Welcome to the InfoSci Platform
A Security Requirements Engineering Tool for Domain Engineering in Software Product Lines

A Security Requirements Engineering Tool for Domain Engineering in Software Product Lines

Jesús Rodríguez, Eduardo Fernández-Medina, Mario Piattini, Daniel Mellado
Copyright: © 2011 |Pages: 20
ISBN13: 9781605667942|ISBN10: 1605667943|EISBN13: 9781605667959
DOI: 10.4018/978-1-60566-794-2.ch004
Cite Chapter Cite Chapter

MLA

Rodríguez, Jesús, et al. "A Security Requirements Engineering Tool for Domain Engineering in Software Product Lines." Non-Functional Properties in Service Oriented Architecture: Requirements, Models and Methods, edited by Nikola Milanovic, IGI Global, 2011, pp. 73-92. https://doi.org/10.4018/978-1-60566-794-2.ch004

APA

Rodríguez, J., Fernández-Medina, E., Piattini, M., & Mellado, D. (2011). A Security Requirements Engineering Tool for Domain Engineering in Software Product Lines. In N. Milanovic (Ed.), Non-Functional Properties in Service Oriented Architecture: Requirements, Models and Methods (pp. 73-92). IGI Global. https://doi.org/10.4018/978-1-60566-794-2.ch004

Chicago

Rodríguez, Jesús, et al. "A Security Requirements Engineering Tool for Domain Engineering in Software Product Lines." In Non-Functional Properties in Service Oriented Architecture: Requirements, Models and Methods, edited by Nikola Milanovic, 73-92. Hershey, PA: IGI Global, 2011. https://doi.org/10.4018/978-1-60566-794-2.ch004

Export Reference

Mendeley
Favorite

Abstract

The concepts of Service-Oriented Architectures and Software Product Lines are currently being paid a considerable amount of attention, both in research and in practice. Both disciplines promise to make the development of flexible, cost-effective software systems possible and to support high levels of reuse, and may sometimes be complementary to each other. In both paradigms, security is a critical issue, although most of the existing product line practices do not comprise all the security requirements engineering activities or provide automated support through which to perform these activities, despite the fact that it is widely accepted that the application of any requirements engineering process or methodology is much more difficult without a CARE (Computer-Aided Requirements Engineering) tool, since it must be performed manually. Therefore, this chapter shall present a tool denominated as SREPPLineTool, which provides automated support through which to facilitate the application of the security quality requirements engineering process for software product lines, SREPPLine. SREPPLineTool simplifies the management of security requirements in product lines by providing us with a guided, systematic and intuitive manner in which to deal with them from the early stages of product line development, thus simplifying the management and the visualization of artefact variability and traceability links and the integration of security standards, along with the management of the security reference model proposed by SREPPLine.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.