Title :
AVT Vector: A Quantitative Security Requirements Evaluation Approach Based on Assets, Vulnerabilities and Trustworthiness of Environment
Author :
Long, Teng ; Liu, Lin ; Yu, Yijun ; Jin, Zhi
Author_Institution :
Sch. of Software, Tsinghua Univ., Tsinghua, China
fDate :
Aug. 31 2009-Sept. 4 2009
Abstract :
Security requirements analysis is gaining growing attention as new vulnerabilities and threats are emerging on daily basis, the systematic evaluation of security requirements is of utmost importance among the various decisions to be made related to security. This short contribution proposes using a 3-dimensional vector for quantitative evaluation of security requirements, which takes into account the importance of assets to be protected, the vulnerability of the system and the trustworthiness of environment.
Keywords :
security of data; 3-dimensional vector; assets-vulnerabilities-trustworthiness vector; quantitative security requirement evaluation; systematic evaluation; Availability; Computer bugs; Computer science; Computer security; Information security; Investments; Protection; Robustness; Software safety; Software systems;
Conference_Titel :
Requirements Engineering Conference, 2009. RE '09. 17th IEEE International
Conference_Location :
Atlanta, GA
Print_ISBN :
978-0-7695-3761-0
