Assessing a requirements evolution approach: Empirical studies in the air traffic management domain

Massacci, Fabio; Paci, Federica; Tran, Le Minh Sang; Tedeschi, Alessandra

doi:10.1016/j.jss.2013.11.1098

Cited by 5 publications

(1 citation statement)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [11], the authors recognize the socio-technical nature of airports by employing use cases and storyboards to discover stakeholder requirements such as security for the development of an airport operating system. Furthermore, in [12] the authors investigate requirements evolution in the context of the Se-cureChange 3 EU-project with an industry case from the Air Traffic Management (ATM) domain. Safety-and security experts are part of the focus groups while the case study results do not explicitly address security specifics.…”

Section: Introductionmentioning

confidence: 99%

Securing Airline-Turnaround Processes Using Security Risk-Oriented Patterns

Samarütel

Matulevičius

Norta

et al. 2016

Lecture Notes in Business Information Processing

View full text Add to dashboard Cite

Part 2: Regular PapersInternational audienceSecurity risk management is an important part of system development. Given that a majority of modern organisations rely heavily on information systems, security plays a big part in ensuring smooth operations of business processes. For example, many people rely on e-services offered by banks and medical establishments. Inadequate security measures in information systems have unwanted effects on an organisation’s reputation and on people’s lives. In this case study research paper, we target the secure system development problem by suggesting the application of security risk oriented patterns. These patterns help find security risk occurrences in business processes and present mitigations for these risks. They provide business analysts with means to elicit and introduce security requirements to business processes. At the same time, they reduce the efforts needed for risk analysis. These security risk oriented patterns are applied on business processes from an aviation-turnaround system. In this paper, we report our experience to derive security requirements to mitigate security risks in distributed systems

show abstract

Section: Introductionmentioning

confidence: 99%