Using a security requirements engineering methodology in practice: The compliance with the Italian data protection legislation

Fabio Massacci; Marco Prest; Nicola Zannone

首页> 外文期刊>Computer standards & interfaces >Using a security requirements engineering methodology in practice: The compliance with the Italian data protection legislation

【24h】

Using a security requirements engineering methodology in practice: The compliance with the Italian data protection legislation

机译：在实践中使用安全需求工程方法：符合意大利数据保护法规

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

Extending Requirements Engineering modelling and formal analysis methodologies to cope with Security Requirements has been a major effort in the past decade. Yet, only few works describe complex case studies that show the ability of the informal and formal approaches to cope with the level complexity required by compliance with ISO-17799 security management requirements. In this paper we present a comprehensive case study of the application of the Secure Tropos RE methodology for compliance to the Italian legislation on Privacy and Data Protection by the University of Trento, leading to the definition and analysis of a ISO-17799-like security management scheme.

机译：在过去的十年中，扩展需求工程模型和形式分析方法以应对安全需求一直是一项重大工作。但是，只有很少的作品描述了复杂的案例研究，这些案例研究显示了非正式和正式方法能够应对符合ISO-17799安全管理要求所要求的级别复杂性的能力。在本文中，我们将对Secure Tropos RE方法论的应用进行全面的案例研究，以符合特伦托大学关于隐私和数据保护的意大利立法，从而定义和分析了类似于ISO-17799的安全管理方法。方案。

著录项

来源
《Computer standards & interfaces》 |2005年第5期|p.445-455|共11页
作者
Fabio Massacci; Marco Prest; Nicola Zannone;
展开▼
作者单位

Dip. di Informatica e Telecomunicazioni, University of Trento, Italy;

Direzione Amministrativa IT, University of Trento, Italy;

Dip. di Informatica e Telecomunicazioni, University of Trento, Italy;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类计算技术、计算机技术;
关键词
Security requirements engineering; Information security management system; Standard for privacy protection;

机译：安全需求工程;信息安全管理系统;隐私保护标准;
入库时间 2022-08-18 02:13:43

相似文献

外文文献
中文文献
专利

1. How to integrate legal requirements into a requirements engineering methodology for the development of security and privacy patterns [J] . Luca Compagna, Paul El Khoury, Alzbeta Krausova, Artificial Intelligence and Law . 2009,第1期

机译：如何将法律要求整合到需求工程方法中以开发安全性和隐私模式
2. Data Base Management Systems (DBMSs): Meeting the requirements of the EU data protection legislation [J] . Anastasios Gounaris, Babis Theodoulidis International Journal of Information Management . 2003,第3期

机译：数据库管理系统（DBMS）：满足欧盟数据保护法规的要求
3. Instrumental Monitoring of Compliance of Websites with the Legislation Requirement in the Area of Personal Data [J] . Scientific & Technical Information Processing . 2019,第4期

机译：在个人数据领域的立法要求，借助于网站的遵守情况
4. Mapping ‘Security Safeguard’ Requirements in a data privacy legislation to an international privacy framework: A compliance methodology [C] . Govender I. Information Security for South Africa Conference . 2015

机译：将数据隐私法规中的“安全保障”要求映射到国际隐私框架：合规性方法
5. How U.S. State Data Protection Statutes Compare in Scope to Safeguard Information and Protect Privacy Using Iso/Iec 27001:2013 and Iso/Iec 27701:2019 Security and Privacy Management System Requirements as an Adequacy Baseline [D] . Allendevaux, Scott. 2021

机译：如何使用ISO / IEC 27001：2013和ISO / IEC 27701：2019安全和隐私管理系统要求，以维护信息和保护隐私，以保护信息和保护隐私
6. Comprehensive user requirements engineering methodology for secure and interoperable health data exchange [O] . Pantelis Natsiavas, Janne Rasmussen, Maja Voss-Knude, 2018

机译：全面的用户需求工程方法论用于安全和可互操作的健康数据交换
7. Using a Security Requirements Engineering Methodology in Practice: the compliance with the Italian Data Protection Legislation [O] . Fabio Massacci A, Marco Prest B, Nicola Zannone A 2013

机译：在实践中使用安全需求工程方法论：符合意大利数据保护法规

Using a security requirements engineering methodology in practice: The compliance with the Italian data protection legislation

摘要

著录项

相似文献

相关主题

期刊订阅