1 Hit in 0.037 sec

Context-Sensitive Requirements and Risk Management with IRIS

Shamal Faily, Ivan Flechais
2009 2009 17th IEEE International Requirements Engineering Conference  
When a system's context of use changes, the security impact may be felt in other contexts. Risks mitigated for one operational context may continue to pose a danger in others due to contextual differences in assets, threats and vulnerabilities. The research presented will identify security factors in these contexts of use, and describe their application to secure systems design. The contributions of this research lead to conceptual models, processes and toolsupport which better situate
more » ... er situate requirements and risk analysis for different contexts of use.
doi:10.1109/re.2009.54 dblp:conf/re/FailyF09 fatcat:zldw6xv3onfklexvaxlunzqolu