SECURE TROPOS: A SECURITY-ORIENTED EXTENSION OF THE TROPOS METHODOLOGY-Reference-Cited by-同舟云学术

SECURE TROPOS: A SECURITY-ORIENTED EXTENSION OF THE TROPOS METHODOLOGY

Published:2007-04 Issue:02 Volume:17 Page:285-309
ISSN:0218-1940
Container-title:International Journal of Software Engineering and Knowledge Engineering
language:en
Short-container-title:Int. J. Soft. Eng. Knowl. Eng.

Author:

MOURATIDIS HARALAMBOS¹,GIORGINI PAOLO²

Affiliation:

1. Innovative Informatics, School of Computing and Technology, University of East London, UK

2. Department of Information and Communication Technology, University of Trento, Italy

Abstract

Although security plays an important role in the development of multiagent systems, a careful analysis of software development processes shows that the definition of security requirements is, usually considered after the design of the system. One of the reasons is the fact that agent oriented software engineering methodologies have not integrated security concerns throughout their developing stages. The integration of security concerns during the whole range of the development stages can help in the development of more secure multiagent systems. In this paper we introduce extensions to the Tropos methodology to enable it to model security concerns throughout the whole development process. A description of the new concepts and modelling activities is given together with a discussion on how these concepts and modelling activities are integrated to the current stages of Tropos. A real life case study from the health and social care sector is used to illustrate the approach.

Publisher

World Scientific Pub Co Pte Lt

Subject

Artificial Intelligence,Computer Graphics and Computer-Aided Design,Computer Networks and Communications,Software

Link

https://www.worldscientific.com/doi/pdf/10.1142/S0218194007003240

Reference25 articles.

1. Agent UML: A Formalism for Specifying Multiagent Software Systems

Cited by 245 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Enabling security risk assessment and management for business process models;Journal of Information Security and Applications;2024-08

2. A Unified Framework for GDPR Compliance in Cloud Computing;Proceedings of the 19th International Conference on Availability, Reliability and Security;2024-07-30

3. A Model-based Approach for Assessing the Security of Cyber-Physical Systems;Proceedings of the 19th International Conference on Availability, Reliability and Security;2024-07-30

4. Understanding the GDPR from a requirements engineering perspective—a systematic mapping study on regulatory data protection requirements;Requirements Engineering;2024-07-10

5. How Do Practitioners Reason About Security Requirements? An Interview Study;2024 IEEE 32nd International Requirements Engineering Conference (RE);2024-06-24