Using Special Use Cases for Security in the SoftwareDevelopment Life Cycle

Kabasele Tenday, Jean-Marie
(2010) Workshop on Information Security Application - WISA 2010 — Location: South Corea

Files

document.pdf
  • Restricted Access
  • Adobe PDF
  • 322.8 KB

Details

Authors
  • Kabasele Tenday, Jean-MarieUCLouvain
    Collaborator
Abstract
Abstract. The goal of this paper is to propose the use of the Misuse Case and Obligation use case concepts in the Software Development Life Cycle (SDLC) in order to position security concerns at the very beginning of this process and to get “secure applications”. These concepts are built upon the “use case” concept which is well known by the community of application developers in companies and by the application sponsors. The application sponsors are the key business stakeholders that fund and/or rely on the application for their business benefits. As stated in [1] and [3], the use case concept has proven helpful for the elicitation of, communication about and documentation of requirements [4]. So, we think it is easier to introduce security requirements in the development lifecycle by reusing and/or constructing security requirement artifacts around the use case and UML approach.
Affiliations

Citations

Using Special Use Cases for Security in the SoftwareDevelopment Life Cycle. (2010). Information Security Applications, pp. 122–134. https://doi.org/10.1007/978-3-642-17955-6_9