Using the AMAN-DA method to generate security requirements: a case study in the maritime domain
Journal article
Souag, A., Mazo, R., Salinesi, C. and Comyn-Wattiau, I. 2018. Using the AMAN-DA method to generate security requirements: a case study in the maritime domain. Requirements Engineering Journal. 23 (557–580). https://doi.org/10.1007/s00766-017-0279-5
Authors | Souag, A., Mazo, R., Salinesi, C. and Comyn-Wattiau, I. |
---|---|
Abstract | Security requirements are known to be “the most difficult of requirements types” and potentially the ones causing the greatest risk if they are not correct. One approach to requirements elicitation is based on the reuse of explicit knowledge. AMAN-DA is a requirement elicitation method that reuses encapsulated knowledge in security and domain ontologies to produce security requirements specifications. The main research question addressed in this paper is to what extent is AMAN-DA able to generate domain-specific security requirements? Following a well-documented process, a case study related to the maritime domain was undertaken with the goal to demonstrate the utility and effectiveness of AMAN-DA for the elicitation and analysis of domain-specific security requirements. The usefulness of the method was also evaluated with a group of 12 experts. The paper demonstrates the elicitation of domain-specific security requirements by presenting the AMAN-DA method and its application. It describes the evaluation and reports some significant results and their implications for practice and future research, especially for the field of knowledge reuse in requirements engineering. |
Keywords | Security; Requirements engineering ; Domain; Ontologies; Case study |
Year | 2018 |
Journal | Requirements Engineering Journal |
Journal citation | 23 (557–580) |
Publisher | Springer |
ISSN | 0947-3602 |
1432-010X | |
Digital Object Identifier (DOI) | https://doi.org/10.1007/s00766-017-0279-5 |
Official URL | https://link.springer.com/article/10.1007/s00766-017-0279-5 |
Publication dates | |
Online | 22 Sep 2017 |
Nov 2018 | |
Publication process dates | |
Accepted | 04 Sep 2017 |
Deposited | 25 Oct 2023 |
https://repository.canterbury.ac.uk/item/961z4/using-the-aman-da-method-to-generate-security-requirements-a-case-study-in-the-maritime-domain
26
total views0
total downloads1
views this month0
downloads this month