An Approach to Security Requirements Engineering for a High Assurance System

Loading...
Thumbnail Image
Authors
Irvine, Cynthia E.
Levin, Timothy E.
Wilson, J. D.
Shifflett, D.
Pereira, B.
Subjects
security
requirements
assurance
threat
specification
engineering
Advisors
Date of Issue
2002-07-02
Date
Publisher
Requirements Engineering Journal
Language
Abstract
Requirements specifications for high assurance secure systems are rare in the open literature. This paper examines the development of a requirements document for a multilevel secure system that must meet stringent assurance and evaluation requirements. The system is designed to be secure, yet combines popular commercial components with specialized high assurance ones. Functional and non-functional requirements pertinent to security are discussed. A multi-dimensional threat model is presented. The threat model accounts for the developmental and operational phases of system evolution and for each phase accounts for both physical and non-physical threats. We describe our team-based method for developing a requirements document and relate that process to techniques in requirements engineering. The system requirements document presented provides a calibration point for future security requirements engineering techniques intended to meet both functional and assurance goals.
Type
Article
Description
Series/Report No
Department
Identifiers
NPS Report Number
Sponsors
Funder
Format
Citation
Requirements Engineering Journal, Vol. 7, No. 4, pp. 192-206, 18 December 2002
Distribution Statement
Approved for public release; distribution is unlimited.
Rights
This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.
Collections