• DocumentCode
    2420644
  • Title

    Ensuring Cost Efficient and Secure Software through Student Case Studies in Risk and Requirements Prioritization

  • Author

    Mead, Nancy R. ; Shoemaker, Dan ; Ingalsbe, Jeff

  • fYear
    2009
  • fDate
    5-8 Jan. 2009
  • Firstpage
    1
  • Lastpage
    9
  • Abstract
    This paper presents a discussion of educational case studies used in security requirements assessment and requirements prioritization. Related to this, it introduces risk understanding as an added dimension to the requirements prioritization process. It should be self-evident that the final product should incorporate the requirements with the greatest value. Nevertheless, in a time when security is a preeminent concern it should also be clear that risk elements should also be considered. As such, activities to reconcile risk with value are always essential. However, since risk and value considerations are different, and sometimes opposed to each other, this paper presents a new process that will help decision makers reconcile these two factors within a single approach. This new process may also be incorporated into security requirements education and prioritization.
  • Keywords
    security of data; software engineering; cost efficient software; requirements prioritization; secure software; Acoustical engineering; Application software; Costs; Design engineering; Investments; National security; Performance analysis; Power engineering and energy; Protection; Software engineering;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    System Sciences, 2009. HICSS '09. 42nd Hawaii International Conference on
  • Conference_Location
    Big Island, HI
  • ISSN
    1530-1605
  • Print_ISBN
    978-0-7695-3450-3
  • Type

    conf

  • DOI
    10.1109/HICSS.2009.193
  • Filename
    4755794
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2420644