Towards Requirement and Modeling Driven Security Evaluation

2006 International Conference on Systems and Networks Communications (ICSNC'06) Pub Date : 2006-10-29 DOI:10.1109/ICSNC.2006.72

R. Savola

引用次数: 3

Abstract

Development of the information security requirements of practical telecommunications and software-intensive systems is typically at an inadequate level and relies heavily on the experience of the security professionals. Security requirements are in the focus in all phases of security engineering. Obviously, automated approaches are needed in this field. We here introduce a framework for security evaluation based on security requirement definition, behavior modeling and evidence collection.

查看原文本刊更多论文

面向需求和建模驱动的安全评估

实际电信和软件密集型系统的信息安全要求的发展通常处于不足的水平，并且严重依赖于安全专业人员的经验。安全需求是安全工程各个阶段关注的焦点。显然，这个领域需要自动化的方法。本文介绍了一个基于安全需求定义、行为建模和证据收集的安全评估框架。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2006 International Conference on Systems and Networks Communications (ICSNC'06)

自引率

0.00%

发文量