• DocumentCode
    1068580
  • Title

    Misuse cases: use cases with hostile intent

  • Author

    Alexander, Ian

  • Volume
    20
  • Issue
    1
  • fYear
    2003
  • Firstpage
    58
  • Lastpage
    66
  • Abstract
    Humans have analyzed negative scenarios ever since they first sat around Ice Age campfires debating the dangers of catching a woolly rhinoceros: "What if it turns and charges us before it falls into the pit?" A more recent scenario is "What if the hackers launch a denial-of-service attack?" Modern systems engineers can employ a misuse case, the negative form of a use case, to document and analyze such scenarios. A misuse case is simply a use case from the point of view of an actor hostile to the system under design. Misuse cases have many possible applications and interact with use cases in interesting and helpful ways. The paper discusses the elicitation of safety requirements from failure cases and considers the interplay of design, functional, and nonfunctional requirements.
  • Keywords
    computer crime; security of data; systems analysis; computer hacking; data security; denial-of-service attack; failure cases; functional requirements; misuse case; safety requirements engineering; use cases; Cause effect analysis; Computer aided software engineering; Costs; Engines; Failure analysis; Hazards; Protection; Safety; Security; System analysis and design;
  • fLanguage
    English
  • Journal_Title
    Software, IEEE
  • Publisher
    ieee
  • ISSN
    0740-7459
  • Type

    jour

  • DOI
    10.1109/MS.2003.1159030
  • Filename
    1159030
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1068580