设计为代码:使用CAIRIS促进可用性和安全工程师之间的协作

2017 IEEE 25th International Requirements Engineering Conference Workshops (REW) Pub Date : 2017-10-02 DOI:10.1109/REW.2017.23

Shamal Faily, Claudia Iacob

{"title":"设计为代码:使用CAIRIS促进可用性和安全工程师之间的协作","authors":"Shamal Faily, Claudia Iacob","doi":"10.1109/REW.2017.23","DOIUrl":null,"url":null,"abstract":"Designing usable and secure software is hard without tool-support. Given the importance of requirements, CAIRIS was designed to illustrate the form tool-support for specifying usable and secure systems might take. While CAIRIS supports a broad range of security and usability engineering activities, its architecture needs to evolve to meet the workflows of these stakeholders. To this end, this paper illustrates how CAIRIS and its models act as a vehicle for collaboration between usability and security engineers. We describe how the modified architecture of CAIRIS facilitates this collaboration, and illustrate the tool using three usage scenarios.","PeriodicalId":382958,"journal":{"name":"2017 IEEE 25th International Requirements Engineering Conference Workshops (REW)","volume":"15 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-10-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"Design as Code: Facilitating Collaboration Between Usability and Security Engineers Using CAIRIS\",\"authors\":\"Shamal Faily, Claudia Iacob\",\"doi\":\"10.1109/REW.2017.23\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Designing usable and secure software is hard without tool-support. Given the importance of requirements, CAIRIS was designed to illustrate the form tool-support for specifying usable and secure systems might take. While CAIRIS supports a broad range of security and usability engineering activities, its architecture needs to evolve to meet the workflows of these stakeholders. To this end, this paper illustrates how CAIRIS and its models act as a vehicle for collaboration between usability and security engineers. We describe how the modified architecture of CAIRIS facilitates this collaboration, and illustrate the tool using three usage scenarios.\",\"PeriodicalId\":382958,\"journal\":{\"name\":\"2017 IEEE 25th International Requirements Engineering Conference Workshops (REW)\",\"volume\":\"15 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-10-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 IEEE 25th International Requirements Engineering Conference Workshops (REW)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/REW.2017.23\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE 25th International Requirements Engineering Conference Workshops (REW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/REW.2017.23","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

摘要

在没有工具支持的情况下，很难设计出可用且安全的软件。考虑到需求的重要性，设计CAIRIS是为了说明用于指定可用和安全系统的形式工具支持。虽然CAIRIS支持广泛的安全性和可用性工程活动，但它的体系结构需要发展以满足这些涉众的工作流程。为此，本文阐述了CAIRIS及其模型如何作为可用性和安全性工程师之间协作的工具。我们描述了修改后的CAIRIS架构如何促进这种协作，并使用三种使用场景来说明该工具。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Design as Code: Facilitating Collaboration Between Usability and Security Engineers Using CAIRIS

Designing usable and secure software is hard without tool-support. Given the importance of requirements, CAIRIS was designed to illustrate the form tool-support for specifying usable and secure systems might take. While CAIRIS supports a broad range of security and usability engineering activities, its architecture needs to evolve to meet the workflows of these stakeholders. To this end, this paper illustrates how CAIRIS and its models act as a vehicle for collaboration between usability and security engineers. We describe how the modified architecture of CAIRIS facilitates this collaboration, and illustrate the tool using three usage scenarios.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2017 IEEE 25th International Requirements Engineering Conference Workshops (REW)

自引率

0.00%

发文量