Managing changes with legacy security engineering processes
- Resource Type
- Conference
- Authors
- Felix, Edith; Delande, Olivier; Massacci, Fabio; Paci, Federica
- Source
- Proceedings of 2011 IEEE International Conference on Intelligence and Security Informatics Intelligence and Security Informatics (ISI), 2011 IEEE International Conference on. :137-142 Jul, 2011
- Subject
- Computing and Processing
Communication, Networking and Broadcast Technologies
Components, Circuits, Devices and Systems
Bioengineering
General Topics for Engineers
Signal Processing and Analysis
Security
Computational modeling
Business
Design methodology
IEC standards
Control systems
ISO standards
System and software engineering life cycle
Security engineering
Security risks
Requirements
Tooling
- Language
Managing changes in Security Engineering is a difficult task: the analyst must keep the consistency between security knowledge such as assets, attacks and treatments to stakeholders' goals and security requirements. Research-wise the usual solution is an integrated methodology in which risk, security requirements and architectural solutions are addressed within the same tooling environment and changes can be easily propagated.