Assumption-based risk identification method (ARM) in dynamic service provisioning

Zarghami, Alireza; Vriezekolk, Eelco; Eslami, Mohammad Zarifi; Sinderen, Marten van; Wieringa, Roel

doi:10.1109/re.2013.6636717

Search citation statements

Order By: Relevance

Paper Sections

Select...

Structure1

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2015

Publication Types

Select...

Other2

Relationship

Self Cite0

Independent2

Authors

Journals

Cited by 2 publications

(1 citation statement)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Moreover, it positions the ARM method with respect to existing risk identification methods and explains how the method is applied between the two experiments through a set of interviews, and consequently the risks which have been identified. This chapter is partly based on paper [166]. INTRODUCTION -Chapter 8 -Experimental Prototype: presents the prototype implementation of the DHSP platform.…”

Section: Structurementioning

confidence: 99%

Architectural support for dynamic homecare service provisioning

Zarghami¹

View full text Add to dashboard Cite

show abstract

Section: Structurementioning

confidence: 99%

Architectural support for dynamic homecare service provisioning

Zarghami¹

View full text Add to dashboard Cite

show abstract

Assessment of risk perception in security requirements composition

Hibshi¹,

Breaux

Broomell

2015

2015 IEEE 23rd International Requirements Engineering Conference (RE)

View full text Add to dashboard Cite

Security requirements analysis depends on how well-trained analysts perceive security risk, understand the impact of various vulnerabilities, and mitigate threats. When systems are composed of multiple machines, configurations, and software components that interact with each other, risk perception must account for the composition of security requirements. In this paper, we report on how changes to security requirements affect analysts risk perceptions and their decisions about how to modify the requirements to reach adequate security levels. We conducted two user surveys of 174 participants wherein participants assess security levels across 64 factorial vignettes. We analyzed the survey results using multilevel modeling to test for the effect of security requirements composition on participants' overall security adequacy ratings and on their ratings of individual requirements. We accompanied this analysis with grounded analysis of elicited requirements aimed at lowering the security risk. Our results suggest that requirements composition affects experts' adequacy ratings on security requirements. In addition, we identified three categories of requirements modifications, called refinements, replacements and reinforcements, and we measured how these categories compare with overall perceived security risk. Finally, we discuss the future impact of our work in security requirements assessment practice.

show abstract

Assumption-based risk identification method (ARM) in dynamic service provisioning

Cited by 2 publications

References 13 publications

Architectural support for dynamic homecare service provisioning

Architectural support for dynamic homecare service provisioning

Assessment of risk perception in security requirements composition

Contact Info

Product

Resources

About