Go to main content

Pattern and security requirements [electronic resource] : engineering-based establishment of security standards / Kristian Beckers.

Beckers, Kristian, author.
2015
QA76.9.A25 B43 2015eb
Available Online
Formats
Format
BibTeX
MARCXML
TextMARC
MARC
DublinCore
EndNote
NLM
RefWorks
RIS
Add to Basket
Cite
Citation

Linked e-resources

Linked Resource
Online Access
Concurrent users
Unlimited
Authorized users
Authorized users
Document Delivery Supplied
Can lend chapters, not whole ebooks

Details

Title
Pattern and security requirements [electronic resource] : engineering-based establishment of security standards / Kristian Beckers.
Author
Beckers, Kristian, author.
ISBN
9783319166643 electronic book
3319166646 electronic book
9783319166636
DOI
https://doi.org/10.1007/978-3-319-16664-3
Published
Cham : Springer, [2015]
Language
English
Description
1 online resource : illustrations
Item Number
10.1007/978-3-319-16664-3 doi
Call Number
QA76.9.A25 B43 2015eb
Dewey Decimal Classification
005.8
Summary
Security threats are a significant problem for information technology companies today. This book focuses on how to mitigate these threats by using security standards and provides ways to address associated problems faced by engineers caused by ambiguities in the standards. The security standards are analysed, fundamental concepts of the security standards presented, and the relations to the elementary concepts of security requirements engineering (SRE) methods explored. Using this knowledge, engineers can build customised methods that support the establishment of security standards. Standards such as Common Criteria or ISO 27001 are explored and several extensions are provided to well-known SRE methods such as Si*, CORAS, and UML4PF to support the establishment of these security standards. Through careful analysis of the activities demanded by the standards, for example the activities to establish an Information Security Management System (ISMS) in compliance with the ISO 27001 standard, methods are proposed which incorporate existing security requirement approaches and patterns. Understanding Pattern and Security Requirements engineering methods is important for software engineers, security analysts, and other professionals that are tasked with establishing a security standard, as well as researchers who aim to investigate the problems with establishing security standards. The examples and explanations in this book are designed to be understandable by all these readers.
Bibliography, etc. Note
Includes bibliographical references.
Access Note
Access limited to authorized users.
Source of Description
Online resource; title from PDF title page (viewed April 21, 2015).
Available in Other Form
Print version: 9783319166636
Linked Resources
Online Access
Record Appears in
Online Resources > Ebooks
All Resources
Foreword
Preface
Introduction
Background
The PEERESS Framework
The CAST Method for Comparing Security Standards
Relating ISO 27001 to the Conceptual Framework for Security Requirements Engineering Methods
Supporting ISO 27001 compliant ISMS Establishment with Si*
Supporting ISO 27001 Establishment with CORAS
Supporting Common Criteria Security Analysis with Problem Frames
Supporting ISO 26262 Hazard Analysis with Problem Frames
A Catalog of Context-Patterns
Initiating a Pattern Language for Context-Patterns
Supporting the Establishment of a cloud-specific ISMS according to ISO 27001 using the Cloud System Analysis Pattern
Validation and Extension of our Context-Pattern Approach
Conclusion.

Browse Subjects

Show more subjects...

Statistics

from
to
Export