loading
Papers

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Daniel Mellado 1 ; Eduardo Fernández-Medina 2 and Mario Piattini 2

Affiliations: 1 Ministry of Work and Social Affairs, Management Organism of Information Technologies of the Social Security, Software Development Centre of the National Social Security Institute, Spain ; 2 University of Castilla-La Mancha, Spain

ISBN: 978-972-8865-96-2

Abstract: Security related requirements are increasingly becoming a significant portion of the total set of requirements for many software systems. At the same time, nowadays many systems are developed based on the product line engineering paradigm. Within product lines, security requirements issues are extremely important because weakness in security can cause problems throughout the lifecycle of a line. The main contribution of this work is that of providing a standard-based process, which is an add-in of activities in the domain engineering as well as in application engineering processes. These processes deal with the security requirements from the early stages of product line lifecycle in a systematic and intuitive way especially adapted for product line based development. It is based on the use of the latest security requirements techniques, together with the integration of the Common Criteria (ISO/IEC 15408) into the product line lifecycle. Additionally, it deals with security artifacts r euse, by providing us with a Security Resources Repository. Moreover, it facilitates the conformance to the most relevant security standards with regard to the management of security requirements. (More)

PDF ImageFull Text

Download
CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 35.172.217.40

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Mellado D.; Fernández-Medina E.; Piattini M. and (2007). SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines.In Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007) ISBN 978-972-8865-96-2, pages 220-232. DOI: 10.5220/0002424702200232

@conference{wosis07,
author={Daniel Mellado and Eduardo Fernández{-}Medina and Mario Piattini},
title={SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines},
booktitle={Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007)},
year={2007},
pages={220-232},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002424702200232},
isbn={978-972-8865-96-2},
}

TY - CONF

JO - Proceedings of the 5th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2007)
TI - SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines
SN - 978-972-8865-96-2
AU - Mellado, D.
AU - Fernández-Medina, E.
AU - Piattini, M.
PY - 2007
SP - 220
EP - 232
DO - 10.5220/0002424702200232

Login or register to post comments.

Comments on this Paper: Be the first to review this paper.