首页> 外文会议>ACM symposium on Applied Computing >Identifying vulnerabilities and critical requirements using criminal court proceedings

【24h】

Identifying vulnerabilities and critical requirements using criminal court proceedings

机译：使用刑事法院程序确定漏洞和关键要求

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Information systems governed by laws and regulations are subject to civil and criminal violations. In the United States, these violations are documented in court records, such as complaints, indictments, plea agreements, and verdicts, which thus constitute a source of real-world software vulnerabilities. This paper reports on an exploratory case study to identify legal vulnerabilities and provides guidance to practitioners in the analysis of court documents. As legal violations occur after system deployment, court records reveal vulnerabilities that were likely overlooked during software development. We evaluate established requirements engineering techniques, including sequence and misuse case diagrams and goal models, as applied to criminal court records to identify mitigating requirements that improve privacy protections. These techniques, when properly applied, can help organizations focus their risk-management efforts on emerging legal vulnerabilities. We illustrate our analysis using criminal indictments involving the U.S. Health Insurance Portability and Accountability Act (HIPAA).

机译：受法律和法规约束的信息系统可能会遭受民事和刑事侵害。在美国，这些违规行为记录在法庭记录中，例如投诉，起诉，辩诉协议和判决，因此构成了现实世界中的软件漏洞。本文报告了一项探索性案例研究，以识别法律漏洞，并为从业人员在法庭文件分析中提供指导。由于在系统部署后发生了违反法律的行为，法院记录显示了在软件开发过程中可能被忽略的漏洞。我们评估已建立的需求工程技术，包括序列和滥用案例图和目标模型，这些技术已应用于刑事法院记录，以识别缓解风险的需求，从而改善隐私保护。如果正确应用这些技术，它们可以帮助组织将风险管理工作集中在新出现的法律漏洞上。我们使用涉及《美国健康保险可移植性和责任法案》（HIPAA）的刑事起诉来说明我们的分析。

著录项

来源
《ACM symposium on Applied Computing》|2009年|P.355 - 359|共5页
会议地点
作者
Travis D. Breaux; Jonathan D. Lewis; Paul N. Otto; Annie I. Anton;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类计算技术、计算机技术;
关键词

相似文献

外文文献
中文文献
专利

1. Supreme Court Goodbye to Ghosh: The UK Supreme Court Clarifies the Proper Test for Dishonesty to be Applied in Criminal Proceedings [J] . Adam Jackson The journal of criminal law . 2017,第6期

机译：最高法院告别戈什：英国最高法院澄清了在刑事诉讼中适用不诚实行为的适当标准
2. Drafting a General Part to a Penal Code: Some Thoughts Inspired by the Negotiations on the Rome Statute of the International Criminal Court and by the Court’s First Substantive Law Discussion in the Lubanga Dyilo Confirmation Proceedings [J] . Roger S. Clark Criminal Law Forum . 2008,第3a4期

机译：起草《刑法典》的一般部分：《国际刑事法院罗马规约》的谈判以及《卢班加·迪洛确认书》中法院首次对实体法的讨论启发了一些思想
3. The testimony of vulnerable victims and witnesses in criminal proceedings in the European Union [J] . Jenny McEwan ERA-Forum . 2009,第3期

机译：易受害的受害者和证人在欧洲联盟刑事诉讼中的证词
4. Identifying vulnerabilities and critical requirements using criminal court proceedings [C] . Travis D. Breaux, Jonathan D. Lewis, Paul N. Otto, ACM symposium on Applied Computing . 2009

机译：使用刑事法庭诉讼来确定漏洞和关键要求
5. Journalist's privilege in criminal proceedings: An analysis of United States courts of appeals' and states high courts' decisions from 1973 to 1999. [D] . Schmid, Karl Howard. 2001

机译：记者在刑事诉讼中的特权：对美国上诉法院和各高等法院从1973年至1999年的判决的分析。
6. Psychiatric Disorders Among Detained Youths: A Comparison of Youths Processed in Juvenile Court and Adult Criminal Court [O] . Jason Washburn, Linda Teplin, Laurie Voss, -1

机译：被拘留青年的精神疾病：少年法院和成人刑事法院处理的青少年比较
7. nyk of the Lviv University. Series Law KEYWORDS abuse of authority, abuse of power, abuse of official status, abuse of office acts of the European Union, international legal regulation, employment, right to free movement advocacy, advocate activity, advocacy science, advocatologie, theory of advocacy appeal proceeding, grounds to judgement revision, inconsistency of the court’s findings at first instance with the actual circumstances of the criminal proceedings, cancellation or alteration of the judgment charity organization, founder, assets of charity organization, constituent documents criminal proceedings, subjects of criminal proceedings, the suspect, the suspect law, criminal procedure, international standards employer’s duty, right to the moral injury compensation, social insurance from an industrial accident, social need, labour dispute forms of the legal actions of the collective of employees historical and legal science department, scientific activity law enforcement equipment, individual legal act, the means of forming the content of the enforcement act, requirements for registration of individual legal act attributes (properties) of acts of law legal formula (construction), qualified corpus delicti of a crime, degree of social danger, crime-forming feature legal social community legal technique, technology, legal act, legal system, lawmaking legitimacy, investigation of crime, concept of criminalistics, criminalistics recommendations, tactical methods measures aimed at providing criminal proceedings, procedural sanction, monetary penalty, pre-trial investigation national implementation, forms of implementation, implementation practice, European states, international treaties participant, shareholder, partnership, acquisition, changing, suspension proof, probability, likelihood, credibility in evidence, reliability scientific school, research, development land, agricultural and environmental law, Lviv Scientific School land, agricultural and environmental law the High Council of Justice of Ukraine, the National Council of Justice of the Republic of Poland, judges’ independence, international standards of the judiciary the presumption of the labor legal personality OPEN JOURNAL SYSTEMS Journal Help USER Username Password Remember me Login NOTIFICATIONS View Subscribe LANGUAGE Select LanguageSubmit JOURNAL CONTENT Search Search Scope Search Browse By Issue By Author By Title Other Journals FONT SIZE Make font size smallerMake font size defaultMake font size larger INFORMATION For Readers For Authors For Librarians HOME ABOUT LOGIN REGISTER SEARCH CURRENT ARCHIVES ANNOUNCEMENTS Home > No 67 (2018) > Марін ONCE AGAIN ON THE RETROACTIVE EFFECT OF THE CRIMINAL LAW IN TIME IN THE ASPECT OF INDIRECT CRIMINALIZATION [O] . Oleksandr Marin 2018

机译：LVIV大学的尼克。系列律师关键词滥用权威，滥用权力，滥用官方地位，滥用欧盟办公室行为，国际法律监管，就业，自由运动倡导，倡导活动，倡导科学，倡导性宣传理论，倡导呼吁的理论，理由修改，法院调查结果的不一致事实，判决慈善组织的实际情况，取消或改变判决慈善机构，慈善组织的创始人，慈善机构资产，组成文件刑事诉讼，刑事诉讼主题，嫌疑人，嫌疑法，刑事诉讼，国际标准雇主的责任，道德伤害赔偿权，社会保险从工业事故，社会需求，劳动争端形式的员工历史和法律科学部的法律行为，科学活动执法设备，个人法律法案，制定执法法案的内容，法律法律公式（建设）行为的个人法律法案（属性），犯罪的合格犯罪，社会危险程度，犯罪形成特征法律社会社会法律技术，技术，法律法，法律制度，立法合法性，犯罪调查，犯罪概念，犯罪建议，战术方法旨在提供刑事诉讼，程序制裁，货币罚款，预审调查预审国家实施，执行形式，实施实践，欧洲国家，国际条约参与者，股东，伙伴关系，收购，不断变化，暂停证明，概率，可能性，可信度在证据，可靠性科学学校，研究，开发土地，农业和环境法，利沃科学校园，农业和环境法律议理乌克兰的冰，波兰共和国国家司法委员会，法官的独立，国际标准的司法部门劳动法人的推定开放期刊系统期刊帮助用户用户名密码记住我登录通知查看订阅语言选择lobsumberubmit期刊内容搜索搜索范围搜索按问题浏览作者标题在间接刑事定罪方面，再次对刑法的追溯效应及时
8. Vulnerability of critical infrastructures : identifying critical nodes. [R] . 2004

机译：关键基础设施的脆弱性：识别关键节点。

Identifying vulnerabilities and critical requirements using criminal court proceedings

摘要

著录项

相似文献

相关主题

期刊订阅