From Trust to Dependability through Risk Analysis

Asnar, Yudistira; Giorgini, Paolo; Massacci, Fabio; Zannone, Nicola

doi:10.1109/ares.2007.93

Cited by 54 publications

(33 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These are all important kinds of trust; however none of these is sociotechnical. Asnar et al [2] model trust relationships among actors in order to analyze risk; however in their approach, trust is an agent's subjective belief about another, in other words, cognitive. Similar to our approach, Giorgini et al [9] model social trust at the role level.…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Sociotechnical Trust: An Architectural Approach

Chopra

Paja

Giorgini

2011

Conceptual Modeling – ER 2011

Self Cite

View full text Add to dashboard Cite

Abstract. Current approaches in sociotechnical systems consider trust to be either cognitive-referring to actors' mental models of each other-or technicalreferring to an actor's trust of a technical artifact. In this paper, we take a more expansive view of trust: in addition to the cognitive, we also consider trust in the architectural sense. Broadly, architectural trust applies at the level of roles. Our principal claim is that sociotechnical systems are essentially specified in terms of architectural trust. Whereas previous work has considered dependencies between actors as a fundamental social relation, we claim that no dependency can exist without the corresponding architectural trust.

show abstract

Section: Discussionmentioning

confidence: 99%

“…In this setting, the Patient trusts the Hospital will provide accurate test results (2). On the other hand, the Hospital depends on the Lab to analyze test outcomes and produce accurate results (3).…”

Section: Introductionmentioning

confidence: 99%

Sociotechnical Trust: An Architectural Approach

Chopra

Paja

Giorgini

2011

Conceptual Modeling – ER 2011

Self Cite

View full text Add to dashboard Cite

show abstract

“…(1) Description: Asnar et al [90] propose the Tropos GoalRisk Framework, an extension of earlier work [91], to assess risk based on trust relations among actors. More precisely, the extension comprises the introduction of the notion trust as a ''subjective probability that defines the expectation of an actor about profitable behavior of another actor'' [90].…”

Section: Tropos Goal-risk Frameworkmentioning

confidence: 99%

A comparison of security requirements engineering methods

et al. 2009

View full text Add to dashboard Cite

This paper presents a conceptual framework for security engineering, with a strong focus on security requirements elicitation and analysis. This conceptual framework establishes a clear-cut vocabulary and makes explicit the interrelations between the different concepts and notions used in security engineering. Further, we apply our conceptual framework to compare and evaluate current security requirements engineering approaches, such as the Common Criteria, Secure Tropos, SREP, MSRA, as well as methods based on UML and problem frames. We review these methods and assess them according to different criteria, such as the general approach and scope of the method, its validation, and quality assurance capabilities. Finally, we discuss how these methods are related to the conceptual framework and to one another.

show abstract

“…CORAS consists of eight steps, provides a customized language for threat and risk modelling, and comes with detailed guidelines explaining how the language should be used. (h) Tropos goal-risk framework [16]: extends Tropos methodology to assess risk based on trust relations among actors. Risk analysis is used to evaluate alternative goals and to assess countermeasures to mitigate risks.…”

Section: The Security Requirements Engineering Methods Reviewedmentioning

confidence: 99%

A Review of Security Requirements Engineering Methods with Respect to Risk Analysis and Model-Driven Engineering

Muñante

Chiprianov

Gallon

et al. 2014

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Part 1: Cross-Domain Conference and Workshop on Multidisciplinary Research and Practice for Information Systems (CD-ARES 2014): Software SecurityInternational audienceOne of the most important aspects that help improve the quality and cost of secure information systems in their early stages of the development lifecycle is Security Requirements Engineering (SRE). However, obtaining such requirements is non-trivial. One domain dealing also with eliciting security requirements is Risk Analysis (RA). Therefore, we perform a review of SRE methods in order to analyse which ones are compatible with RA processes. Moreover, the transition from these early security requirements to security policies at later stages in the lifecycle is generally non-automatic, informal and incomplete. To deal with such issues, model-driven engineering (MDE) uses formal models and automatic model transformations. Therefore, we also review which SRE methods are compatible with MDE approaches. Consequently, our review is based on criteria derived partially from existing survey works, further enriched and specialized in order to evaluate the compatibility of SRE methods with the disciplines of RA and MDE. It summarizes the evidence regarding this issue so as to improve understanding and facilitate evaluating and selecting SRE methods

show abstract

From Trust to Dependability through Risk Analysis

Cited by 54 publications

References 16 publications

Sociotechnical Trust: An Architectural Approach

Sociotechnical Trust: An Architectural Approach

A comparison of security requirements engineering methods

A Review of Security Requirements Engineering Methods with Respect to Risk Analysis and Model-Driven Engineering

Contact Info

Product

Resources

About