Projects per year
Abstract
This position paper presents and illustrates the concept of security requirements as code - a novel approach to security requirements specification. The aspiration to minimize code duplication and maximize its reuse has always been driving the evolution of software development approaches. Object-Oriented programming (OOP) takes these approaches to the state in which the resulting code conceptually maps to the problem that the code is supposed to solve. People nowadays start learning to program in the primary school. On the other hand, requirements engineers still heavily rely on natural language based techniques to specify requirements. The key idea of this paper is: artifacts produced by the requirements process should be treated as input to the regular object-oriented analysis. Therefore, the contribution of this paper is the presentation of the major concepts for the security requirements as the code method that is illustrated with a real industry example from the VeriDevOps project.
Original language | English |
---|---|
Title of host publication | Proceedings - 29th IEEE International Requirements Engineering Conference Workshops, REW 2021 |
Editors | Tao Yue, Mehdi Mirakhorli |
Publisher | IEEE |
Pages | 357-363 |
Number of pages | 7 |
ISBN (Electronic) | 978-1-6654-1898-0 |
ISBN (Print) | 978-1-6654-1899-7 |
DOIs | |
Publication status | Published - 2021 |
MoE publication type | A4 Article in a conference publication |
Event | IEEE International Requirements Engineering Conference Workshops - Duration: 20 Sept 2021 → 24 Sept 2021 |
Conference
Conference | IEEE International Requirements Engineering Conference Workshops |
---|---|
Abbreviated title | REW |
Period | 20/09/21 → 24/09/21 |
Keywords
- development
- requirements as code
- seamless
- security
- software
Fingerprint
Dive into the research topics of 'Security Requirements as Code: Example from VeriDevOps Project'. Together they form a unique fingerprint.Projects
- 1 Finished
-
VeriDevOps: Automated Protection and Prevention to Meet Security Requirements in DevOps Environments
Truscan, D. (Principal Investigator), Porres Paltor, I. (Co-Principal Investigator), Ashraf, A. (Principal Investigator), Ahmad, T. (Co-Investigator), Chariyarupadannayil Sudheerbabu, G. (Co-Investigator) & Chapagain, S. (Principal Investigator)
01/10/20 → 31/01/24
Project: EU