Eliciting Security Requirements through Misuse Activities

Author

Braz, Fabricio A. ; Fernandez, Eduardo B. ; VanHilst, Michael

Author_Institution

Electr. Eng., Brasilia, Univ., Brasilia

fYear

2008

fDate

1-5 Sept. 2008

Firstpage

328

Lastpage

333

Abstract

In previous work we introduced an approach for finding security requirements based on misuse activities (actions). This method starts from the activity diagram of a use case (or a sequence of use cases). Each activity is analyzed to see how it could be subverted to produce a misuse of information. This analysis results in a set of threats. We then consider which policies can stop or mitigate these threats. We now extend that approach to consider in the analysis the type of misuse (confidentiality, integrity ...) that can happen in each activity, the role of the attacker, and the context for the threat. This extended analysis results in a finer and more systematic way to find threats and we can identify now more threats. We also improve the way to find the policies to control these threats and we consider how to map the corresponding policies to security patterns. The information in each pattern helps in the selection of an optimal (or good) set of policies. Our extended approach can be conveniently incorporated in a methodology to build secure systems.

Keywords

data integrity; security of data; activity diagram; information misuse; misuse activities; secure systems; security patterns; security requirements; Application software; Computer science; Data security; Databases; Expert systems; Information analysis; Information security; Large-scale systems; Software engineering; Software systems; security patterns; security requirements; software engineering;

fLanguage

English

Publisher

ieee

Conference_Titel

Database and Expert Systems Application, 2008. DEXA '08. 19th International Workshop on

Conference_Location

Turin

ISSN

1529-4188

Print_ISBN

978-0-7695-3299-8

Type

conf

DOI

10.1109/DEXA.2008.101

Filename

4624737