Application of the Enterprise Model Frame for Security Requirements and Control Identification
Databases and Information Systems IX: Selected Papers from the 12th International Baltic Conference on Databases and Information Systems (DB&IS 2016). Ebook Series: Frontiers in Artificial Intelligence and Applications 2016
Mārīte Kirikova, Raimundas Matulevicius, Kurt Sandkuhl

It is generally accepted that security requirements have to be identified as early as possible to avoid later rework in the systems development process. However, in practice quite often security aspects are considered either at the later stages of development cycles (increments in agile projects) or addressed only when problems arise. One of the reasons for difficulties of early detection of security requirements is the complexity of security requirements identification. In this paper we discuss an extension of the method for security requirements elicitation from business processes (SREBP). The extension includes the application of the enterprise model frame to provide an enterprise architecture context for analyzed business process models. The enterprise model frame covers practically all concepts of the information security related definitions; the use of the frame with the SREBP method complies with the common enterprise modeling and enterprise architecture approaches; and it use helps to consider security requirements and control at the business, application, and technology levels simultaneously.


Atslēgas vārdi
Security requirements elicitation, business process models, enterprise modeling
DOI
10.3233/978-1-61499-714-6-129
Hipersaite
http://ebooks.iospress.nl/publication/45706

Kirikova, M., Matulevicius, R., Sandkuhl, K. Application of the Enterprise Model Frame for Security Requirements and Control Identification. No: Databases and Information Systems IX: Selected Papers from the 12th International Baltic Conference on Databases and Information Systems (DB&IS 2016). Ebook Series: Frontiers in Artificial Intelligence and Applications, Latvija, Riga, 4.-6. jūlijs, 2016. Amsterdam: IOS Press, 2016, 129.-142.lpp. ISBN 978-1-61499-713-9. e-ISBN 978-1-61499-714-6. Pieejams: doi:10.3233/978-1-61499-714-6-129

Publikācijas valoda
English (en)
RTU Zinātniskā bibliotēka.
E-pasts: uzzinas@rtu.lv; Tālr: +371 28399196