Presentation and Validation of Method for Security Requirements Elicitation from Business Processes

机译：业务流程中的安全需求启发方法的表示和验证

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

In recent years, the business process modelling is matured towards expressing enterprise's organisational behaviour. This shows potential to perform early security analysis to capture enterprise security needs. Traditionally security in business processes is addressed either by representing security concepts graphically or by enforcing security constraints. But such security approaches miss the elicitation of security needs and their translation to security requirements for system-to-be. This paper proposes a method to elicit security objectives from business process models and translate them to security requirements. As a result, the method contributes to an alignment of business processes with the technology that supports the execution of business processes. The approach applicability is illustrated in few examples and its validity is reported in the comparative study.

机译：近年来，业务流程建模已趋于表达企业的组织行为。这表明执行早期安全分析以捕获企业安全需求的潜力。传统上，业务流程中的安全性是通过以图形表示安全性概念或通过实施安全性约束来解决的。但是，这种安全方法缺少对安全需求的启发，也无法将其转换为适用于将来系统的安全需求。本文提出了一种从业务流程模型中得出安全目标并将其转换为安全需求的方法。结果，该方法有助于业务流程与支持业务流程的执行的技术的对准。在几个示例中说明了该方法的适用性，并且在比较研究中报告了其有效性。

著录项

来源
《Information Systems Engineering in Complex Environments》|2014年|20-35|共16页
会议地点 Thessaloniki(GR)
作者
Naved Ahmed; Raimundas Matulevicius;
展开▼
作者单位

Institute of Computer Science, University of Tartu, J. Liivi 2, 50409 Tartu, Estonia;

Institute of Computer Science, University of Tartu, J. Liivi 2, 50409 Tartu, Estonia;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Security in business processes; Business process modelling; Requirements engineering;

机译：业务流程中的安全性；业务流程建模；需求工程;

相似文献

外文文献
中文文献
专利

1. Eliciting Security Requirements from the Business Processes Using Security Risk-Oriented Patterns [J] . Raimundas Matulevicius, Naved Ahmed Information Technology . 2013,第6期

机译：使用面向安全风险的模式从业务流程中消除安全要求
2. A Survey on Security Requirements Elicitation and Presentation in Requirements Engineering Phase [J] . Md. Alamgir Kabir, Md. Mijanur Rahman American Journal of Engineering Research . 2013,第12期

机译：需求工程阶段的安全需求启发和呈现调查
3. SECURITY REQUIREMENTS ELICITATION AND CONSISTENCY VALIDATION: A SYSTEMATIC LITERATURE REVIEW [J] . NURIDAWATI MUSTAFA, MASSILA KAMALRUDIN, SAFIAH SIDEK Journal of Theoretical and Applied Information Technology . 2018,第16期

机译：安全要求征集和一致性验证：系统的文献综述
4. Presentation and Validation of Method for Security Requirements Elicitation from Business Processes [C] . Naved Ahmed, Raimundas Matulevicius Forum on Information Systems Engineering in Complex Environments . 2015

机译：业务流程安全要求诱导方法的演示和验证
5. Representation of business processes at multiple levels of abstraction (strategic, tactical and operational) during the requirements elicitation stage of a software project, and the measurement of their functional size with ISO 19761 [D] . Monsalve, Carlos 2012

机译：在软件项目的需求确定阶段，以多个抽象级别（策略，战术和操作）表示业务流程，并使用ISO 19761对其功能大小进行度量
6. Advancing methods for research on household water insecurity: Studying entitlements and capabilities socio-cultural dynamics and political processes institutions and governance [O] . Amber Wutich, Jessica Budds, Laura Eichelberger, -1

机译：研究家庭水不安全问题的先进方法：研究应享权利和能力社会文化动态以及政治进程机构和治理
7. Representation of business processes at multiple levels of abstraction (strategic, tactical and operational) during the requirements elicitation stage of a software project, and the measurement of their functional size with ISO 19761 [O] . Monsalve Carlos 2012

机译：在软件项目的需求启发阶段表示多个抽象级别（战略，战术和操作）的业务流程，并使用IsO 19761测量其功能大小

Presentation and Validation of Method for Security Requirements Elicitation from Business Processes

摘要

著录项

相似文献

相关主题

期刊订阅