Presentation and Validation of Method for Security Requirements Elicitation from Business Processes

机译：业务流程安全要求诱导方法的演示和验证

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

In recent years, the business process modelling is matured towards expressing enterprise's organisational behaviour. This shows potential to perform early security analysis to capture enterprise security needs. Traditionally security in business processes is addressed either by representing security concepts graphically or by enforcing security constraints. But such security approaches miss the elicitation of security needs and their translation to security requirements for system-to-be. This paper proposes a method to elicit security objectives from business process models and translate them to security requirements. As a result, the method contributes to an alignment of business processes with the technology that supports the execution of business processes. The approach applicability is illustrated in few examples and its validity is reported in the comparative study.

机译：近年来，业务流程建模朝着表达企业的组织行为成熟。这表明潜力要执行早期安全分析以捕获企业安全需求。通过以图形方式或通过执行安全约束来代表安全概念来解决业务流程中的传统安全性。但这种安全方法会错过安全需求的引发，并将其翻译与系统到安全要求。本文提出了一种从业务流程模型中引出安全目标的方法，并将其转化为安全要求。因此，该方法有助于与支持业务流程执行的技术对齐业务流程。在少数实例中说明了这种方法，并且在比较研究中报告了其有效性。

著录项

来源
《Forum on Information Systems Engineering in Complex Environments》|2015年||共16页
会议地点
作者
Naved Ahmed; Raimundas Matulevicius;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类电子贸易、网上贸易;
关键词
Security in business processes; Business process modelling; Requirements engineering;

机译：业务流程安全;业务流程建模;需求工程;

相似文献

外文文献
中文文献
专利

1. Eliciting Security Requirements from the Business Processes Using Security Risk-Oriented Patterns [J] . Raimundas Matulevicius, Naved Ahmed Information Technology . 2013,第6期

机译：使用面向安全风险的模式从业务流程中消除安全要求
2. A Survey on Security Requirements Elicitation and Presentation in Requirements Engineering Phase [J] . Md. Alamgir Kabir, Md. Mijanur Rahman American Journal of Engineering Research . 2013,第12期

机译：需求工程阶段的安全需求启发和呈现调查
3. SECURITY REQUIREMENTS ELICITATION AND CONSISTENCY VALIDATION: A SYSTEMATIC LITERATURE REVIEW [J] . NURIDAWATI MUSTAFA, MASSILA KAMALRUDIN, SAFIAH SIDEK Journal of Theoretical and Applied Information Technology . 2018,第16期

机译：安全要求征集和一致性验证：系统的文献综述
4. Presentation and Validation of Method for Security Requirements Elicitation from Business Processes [C] . Naved Ahmed, Raimundas Matulevicius Forum on Information Systems Engineering in Complex Environments . 2015

机译：业务流程安全要求诱导方法的演示和验证
5. Representation of business processes at multiple levels of abstraction (strategic, tactical and operational) during the requirements elicitation stage of a software project, and the measurement of their functional size with ISO 19761 [D] . Monsalve, Carlos 2012

机译：在软件项目的需求确定阶段，以多个抽象级别（策略，战术和操作）表示业务流程，并使用ISO 19761对其功能大小进行度量
6. Advancing methods for research on household water insecurity: Studying entitlements and capabilities socio-cultural dynamics and political processes institutions and governance [O] . Amber Wutich, Jessica Budds, Laura Eichelberger, -1

机译：研究家庭水不安全问题的先进方法：研究应享权利和能力社会文化动态以及政治进程机构和治理
7. Representation of business processes at multiple levels of abstraction (strategic, tactical and operational) during the requirements elicitation stage of a software project, and the measurement of their functional size with ISO 19761 [O] . Monsalve Carlos 2012

机译：在软件项目的需求启发阶段表示多个抽象级别（战略，战术和操作）的业务流程，并使用IsO 19761测量其功能大小

Presentation and Validation of Method for Security Requirements Elicitation from Business Processes

摘要

著录项

相似文献

相关主题

期刊订阅