Abstract
Security is considered as an important aspect of software systems, especially in the context of cloud computing. Nevertheless current practises towards securing software systems fail to take into account security issues during the early development stages and also cannot properly address the unique characteristics and needs of the cloud environment. To address such issues, Secure Tropos has been developed as a securityoriented requirements engineering approach, o ering a modelling language and sets of diagrams which facilitate the elicitation and elaboration of security features for software systems. In this work we introduce Secure Tropos by discussing its main concepts, their relations and the main diagrams used to capture the di erent aspects of a software system. SecTro, a CASE tool developed speci cally for the creation and analysis of Secure Tropos diagrams, is used to model a case study as an illustrative example. Finally, future work on expanding the functionalities o ered by Secure Tropos are discussed.
| Original language | English |
|---|---|
| Title of host publication | Domain-Specific Conceptual Modeling: Concepts, Methods and Tools |
| Editors | D. Karagiannis, H.C. Mayr, J. Mylopoulos |
| Place of Publication | Switzerland |
| Publisher | Springer International Publishing |
| Pages | 357-380 |
| Number of pages | 24 |
| ISBN (Print) | 9783319394169 |
| DOIs | |
| Publication status | Published - 10 Jul 2016 |
Keywords
- Information Security
- Cloud computing
- Security requirements engineering
- Security modeling
- Secure Tropos