Abstract
Development of the information security requirements of practical
software-intensive systems is typically ignored, at an inadequate level or
relies heavily on the experience of the security professionals. However, it is
obvious that security requirements are in the focus in all phases of security
engineering. Automated approaches are needed in this field. We introduce a
framework for security evaluation based on security requirement definition,
behavior modeling and evidence collection.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2nd International Conference on Dependability of Computer Systems, DepCOS-RELCOMEX 2007 |
Publisher | IEEE Institute of Electrical and Electronic Engineers |
Pages | 135-142 |
ISBN (Print) | 0-7695-2850-3 |
DOIs | |
Publication status | Published - 2007 |
MoE publication type | A4 Article in a conference publication |
Event | 2nd International Conference on Dependability of Computer Systems, DepCoS-RELCOMEX 2007 - Szklarska, Poland Duration: 14 Jun 2007 → 16 Jun 2007 |
Conference
Conference | 2nd International Conference on Dependability of Computer Systems, DepCoS-RELCOMEX 2007 |
---|---|
Abbreviated title | DepCoS-RELCOMEX 2007 |
Country/Territory | Poland |
City | Szklarska |
Period | 14/06/07 → 16/06/07 |
Keywords
- information security
- security
- software-intensive products
- software
- software safety