TY - GEN
T1 - Security Requirement Modeling Support System Using Software Security Knowledge Base
AU - Hazeyama, Atsuo
AU - Tanaka, Shun'Ichi
AU - Tanaka, Takafumi
AU - Hashiura, Hiroaki
AU - Munetoh, Seiji
AU - Okubo, Takao
AU - Kaiya, Haruhiko
AU - Washizaki, Hironori
AU - Yoshioka, Nobukazu
N1 - Funding Information:
ACKNOWLEDGMENTS This study is partially supported by the Grant-in Aid for No. (C) 26330394, 17K00475, and (B) 15H02686 from the Ministry of Education, Science, Sports and Culture of Japan.
Publisher Copyright:
© 2018 IEEE.
PY - 2018/6/8
Y1 - 2018/6/8
N2 - With the growing number of services on the Internet, the need for secure software development has increased. It is required for secure software development to consider security in the whole development life cycle. It is indispensable for secure software development to use various types of security knowledge. This study deals with security requirement analysis. Existing security requirements modeling systems do not provide a function to create an artifact while referring to security knowledge in an integrated manner. In this paper, the authors develop a modeling support system for a misuse case diagram that enables the association of knowledge with elements that constitute the diagram. The results of an experiment using the system show the system's usefulness in both the integration of the knowledge base with the artifact creation environment and the association of the knowledge with the elements of the diagram.
AB - With the growing number of services on the Internet, the need for secure software development has increased. It is required for secure software development to consider security in the whole development life cycle. It is indispensable for secure software development to use various types of security knowledge. This study deals with security requirement analysis. Existing security requirements modeling systems do not provide a function to create an artifact while referring to security knowledge in an integrated manner. In this paper, the authors develop a modeling support system for a misuse case diagram that enables the association of knowledge with elements that constitute the diagram. The results of an experiment using the system show the system's usefulness in both the integration of the knowledge base with the artifact creation environment and the association of the knowledge with the elements of the diagram.
KW - Knowledge base for secure software development
KW - Modeling support system
KW - Secure software development support
KW - Security requirements analysis
UR - http://www.scopus.com/inward/record.url?scp=85055566296&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85055566296&partnerID=8YFLogxK
U2 - 10.1109/COMPSAC.2018.10235
DO - 10.1109/COMPSAC.2018.10235
M3 - Conference contribution
AN - SCOPUS:85055566296
T3 - Proceedings - International Computer Software and Applications Conference
SP - 234
EP - 239
BT - Proceedings - 2018 IEEE 42nd Annual Computer Software and Applications Conference, COMPSAC 2018
A2 - Demartini, Claudio
A2 - Reisman, Sorel
A2 - Liu, Ling
A2 - Tovar, Edmundo
A2 - Takakura, Hiroki
A2 - Yang, Ji-Jiang
A2 - Lung, Chung-Horng
A2 - Ahamed, Sheikh Iqbal
A2 - Hasan, Kamrul
A2 - Conte, Thomas
A2 - Nakamura, Motonori
A2 - Zhang, Zhiyong
A2 - Akiyama, Toyokazu
A2 - Claycomb, William
A2 - Cimato, Stelvio
PB - IEEE Computer Society
T2 - 42nd IEEE Computer Software and Applications Conference, COMPSAC 2018
Y2 - 23 July 2018 through 27 July 2018
ER -