loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Daniel Mellado 1 ; Eduardo Fernández-Medina 2 and Mario Piattini 2

Affiliations: 1 Ministry of Work and Social Affairs, Management Organism of Information Technologies of the Social Security, Software Development Centre of the National Social Security Institute, Spain ; 2 University of Castilla-La Mancha, Spain

Abstract: Security related requirements are increasingly becoming a significant portion of the total set of requirements for many software systems. At the same time, nowadays many systems are developed based on the product line engineering paradigm. Within product lines, security requirements issues are extremely important because weakness in security can cause problems throughout the lifecycle of a line. The main contribution of this work is that of providing a standard-based process, which is an add-in of activities in the domain engineering as well as in application engineering processes. These processes deal with the security requirements from the early stages of product line lifecycle in a systematic and intuitive way especially adapted for product line based development. It is based on the use of the latest security requirements techniques, together with the integration of the Common Criteria (ISO/IEC 15408) into the product line lifecycle. Additionally, it deals with security artifacts reuse, by providing us with a Security Resources Repository. Moreover, it facilitates the conformance to the most relevant security standards with regard to the management of security requirements. (More)

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 44.220.41.140

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Mellado, D.; Fernández-Medina, E. and Piattini, M. (2007). SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines. In Proceedings of the 5th International Workshop on Security in Information Systems (ICEIS 2007) - WOSIS; ISBN 978-972-8865-96-2, SciTePress, pages 220-232. DOI: 10.5220/0002424702200232

@conference{wosis07,
author={Daniel Mellado. and Eduardo Fernández{-}Medina. and Mario Piattini.},
title={SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines},
booktitle={Proceedings of the 5th International Workshop on Security in Information Systems (ICEIS 2007) - WOSIS},
year={2007},
pages={220-232},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002424702200232},
isbn={978-972-8865-96-2},
}

TY - CONF

JO - Proceedings of the 5th International Workshop on Security in Information Systems (ICEIS 2007) - WOSIS
TI - SREPPLine: Towards a Security Requirements Engineering Process for Software Product Lines
SN - 978-972-8865-96-2
AU - Mellado, D.
AU - Fernández-Medina, E.
AU - Piattini, M.
PY - 2007
SP - 220
EP - 232
DO - 10.5220/0002424702200232
PB - SciTePress