文章基本信息

标题：Software Security Requirements Gathering Instrument
本地全文：下载
作者：Smriti Jain ; Maya Ingle
期刊名称：International Journal of Advanced Computer Science and Applications(IJACSA)
印刷版ISSN：2158-107X
电子版ISSN：2156-5570
出版年度：2011
卷号：2
期号：7
DOI：10.14569/IJACSA.2011.020717
出版社：Science and Information Society (SAI)
摘要：Security breaches are largely caused by the vulnerable software. Since individuals and organizations mostly depend on softwares, it is important to produce in secured manner. The first step towards producing secured software is through gathering security requirements. This paper describes Software Security Requirements Gathering Instrument (SSRGI) that helps gather security requirements from the various stakeholders. This will guide the developers to gather security requirements along with the functional requirements and further incorporate security during other phases of software development. We subsequently present case studies that describe the integration of the SSRGI instrument with Software Requirements Specification (SRS) document as specified in standard IEEE 830-1998. Proposed SSRGI will support the software developers in gathering security requirements in detail during requirements gathering phase.
关键词：thesai; IJACSA; thesai.org; journal; IJACSA papers; Software Requirements Specification; Security Policy; Security Objectives; Security Requirements.