Towards a comprehensive framework for secure systems development

Book chapter


Mouratidis, Haralambos, Jurjens, Jan and Fox, Jorge 2006. Towards a comprehensive framework for secure systems development. in: Dubois, E; Pohl, K (ed.) CAiSE 2006 LNCS 4001 pp.
AuthorsMouratidis, Haralambos, Jurjens, Jan and Fox, Jorge
EditorsDubois, E; Pohl, K
Abstract

Security involves technical as well as social challenges. In the development of security-critical applications, system developers must consider both the technical and the social parts. To achieve this, security issues must be considered during the whole development life-cycle of an information system. This paper presents an approach that allows developers to consider both the social and the technical dimensions of security through a structured and well defined process. In particular, the proposed approach takes the high-level concepts and modelling activities of the secure Tropos methodology and enriches them with a low level security-engineering ontology and models derived from the UMLsec approach. A real case study from the e-commerce sector is employed to demonstrate the applicability of the approach.

KeywordsSoftware systems development; security engineering
Book titleCAiSE 2006
Year2006
PublisherLNCS 4001 pp
Publication dates
Print2006
Publication process dates
Deposited18 Jan 2010
ISSN0302-9743
1611-3349
Web address (URL)http://dx.doi.org/10.1007/11767138_5
http://hdl.handle.net/10552/492
Additional information

Citation:
Mouratidis, H; Jürjens, J; Fox, J. (2006) ‘Towards a comprehensive framework for secure systems development’ In: Dubois, E; Pohl, K. (Eds) CAiSE 2006, LNCS 4001 pp 48-62.

Accepted author manuscript
License
CC BY-ND
Permalink -

https://repository.uel.ac.uk/item/86791

Download files

  • 87
    total views
  • 220
    total downloads
  • 0
    views this month
  • 23
    downloads this month

Export as