Computer-aided support for secure tropos

F. Massacci; J. Mylopoulos; N. Zannone

doi:10.1007/s10515-007-0013-5

Computer-aided support for secure tropos

F. Massacci, J. Mylopoulos, N. Zannone

Research output: Contribution to Journal › Article › Academic › peer-review

Abstract

In earlier work, we have introduced Secure Tropos, a requirements engineering methodology that extends the Tropos methodology and is intended for the design and analysis of security requirements. This paper briefly recaps the concepts proposed for capturing security aspects, and presents an implemented graphical CASE tool that supports the Secure Tropos methodology. Specifically, the tool supports the creation of Secure Tropos models, their translation to formal specifications, as well as the analysis of these specifications to ensure that they comply with specific security properties. Apart from presenting the tool, the paper also presents a two-tier evaluation consisting of two case studies and an experimental evaluation of the tool's scalability. © 2007 Springer Science+Business Media, LLC.

Original language	English
Pages (from-to)	341-364
Journal	Automated Software Engineering
Volume	14
Issue number	3
DOIs	https://doi.org/10.1007/s10515-007-0013-5
Publication status	Published - Sept 2007
Externally published	Yes

Access to Document

10.1007/s10515-007-0013-5

Persistent URL (handle)

Persistent link

Cite this

@article{6cc3665391b548f99459989f488b0de6,

title = "Computer-aided support for secure tropos",

abstract = "In earlier work, we have introduced Secure Tropos, a requirements engineering methodology that extends the Tropos methodology and is intended for the design and analysis of security requirements. This paper briefly recaps the concepts proposed for capturing security aspects, and presents an implemented graphical CASE tool that supports the Secure Tropos methodology. Specifically, the tool supports the creation of Secure Tropos models, their translation to formal specifications, as well as the analysis of these specifications to ensure that they comply with specific security properties. Apart from presenting the tool, the paper also presents a two-tier evaluation consisting of two case studies and an experimental evaluation of the tool's scalability. {\textcopyright} 2007 Springer Science+Business Media, LLC.",

author = "F. Massacci and J. Mylopoulos and N. Zannone",

year = "2007",

month = sep,

doi = "10.1007/s10515-007-0013-5",

language = "English",

volume = "14",

pages = "341--364",

journal = "Automated Software Engineering",

issn = "0928-8910",

publisher = "Springer Netherlands",

number = "3",

}

TY - JOUR

T1 - Computer-aided support for secure tropos

AU - Massacci, F.

AU - Mylopoulos, J.

AU - Zannone, N.

PY - 2007/9

Y1 - 2007/9

N2 - In earlier work, we have introduced Secure Tropos, a requirements engineering methodology that extends the Tropos methodology and is intended for the design and analysis of security requirements. This paper briefly recaps the concepts proposed for capturing security aspects, and presents an implemented graphical CASE tool that supports the Secure Tropos methodology. Specifically, the tool supports the creation of Secure Tropos models, their translation to formal specifications, as well as the analysis of these specifications to ensure that they comply with specific security properties. Apart from presenting the tool, the paper also presents a two-tier evaluation consisting of two case studies and an experimental evaluation of the tool's scalability. © 2007 Springer Science+Business Media, LLC.

AB - In earlier work, we have introduced Secure Tropos, a requirements engineering methodology that extends the Tropos methodology and is intended for the design and analysis of security requirements. This paper briefly recaps the concepts proposed for capturing security aspects, and presents an implemented graphical CASE tool that supports the Secure Tropos methodology. Specifically, the tool supports the creation of Secure Tropos models, their translation to formal specifications, as well as the analysis of these specifications to ensure that they comply with specific security properties. Apart from presenting the tool, the paper also presents a two-tier evaluation consisting of two case studies and an experimental evaluation of the tool's scalability. © 2007 Springer Science+Business Media, LLC.

UR - https://www.scopus.com/pages/publications/34548563765

UR - https://www.scopus.com/inward/citedby.url?scp=34548563765&partnerID=8YFLogxK

U2 - 10.1007/s10515-007-0013-5

DO - 10.1007/s10515-007-0013-5

M3 - Article

SN - 0928-8910

VL - 14

SP - 341

EP - 364

JO - Automated Software Engineering

JF - Automated Software Engineering

IS - 3

ER -

Computer-aided support for secure tropos

Abstract

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this