USING SECURITY ATTACK SCENARIOS TO ANALYSE SECURITY DURING INFORMATION SYSTEMS DESIGN

Haralambos Mouratidis, Paolo Giorgini, Gordon Manson

2004

Abstract

It has been widely argued in the literature that security concerns should be integrated with software engineering practices. However, only recently work has been initiated towards this direction. Most of this work, however, only considers how security can be analysed during the development lifecycles and not how the security of an information system can be tested during the analysis and design stages. In this paper we present results from the development of a technique, which is based on the use of scenarios, to test the reaction of an information system against potential security attacks.

Paper Citation

in Harvard Style

Mouratidis H., Giorgini P. and Manson G. (2004). USING SECURITY ATTACK SCENARIOS TO ANALYSE SECURITY DURING INFORMATION SYSTEMS DESIGN . In Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 3: ICEIS, ISBN 972-8865-00-7, pages 10-17. DOI: 10.5220/0002599000100017

in Bibtex Style

@conference{iceis04,
author={Haralambos Mouratidis and Paolo Giorgini and Gordon Manson},
title={USING SECURITY ATTACK SCENARIOS TO ANALYSE SECURITY DURING INFORMATION SYSTEMS DESIGN},
booktitle={Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 3: ICEIS,},
year={2004},
pages={10-17},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002599000100017},
isbn={972-8865-00-7},
}

in EndNote Style

TY - CONF
JO - Proceedings of the Sixth International Conference on Enterprise Information Systems - Volume 3: ICEIS,
TI - USING SECURITY ATTACK SCENARIOS TO ANALYSE SECURITY DURING INFORMATION SYSTEMS DESIGN
SN - 972-8865-00-7
AU - Mouratidis H.
AU - Giorgini P.
AU - Manson G.
PY - 2004
SP - 10
EP - 17
DO - 10.5220/0002599000100017