Assessing system of systems security risk and requirements with oasosis
Journal: Proceedings - 2018 5th International Workshop on Evolving Security and Privacy Requirements Engineering, ESPRE 2018
When independent systems come together as a System of Systems (SoS) to achieve a new purpose, dealing with requirements conflicts across systems becomes a challenge. Moreover, assessing and modelling security risk for independent systems and the SoS as a whole is challenged by a gap in related research and approaches within the SoSs domain. In this paper, we present an approach for bridging SoS and Requirements Engineering by identifying aligning SoSs concepts to assess and model security risk and requirements. We introduce our OASoSIS approach modifying OCTAVE Allegro for SoSs using CAIRIS (Computer Aided Integration of Requirements and Information Security) with a medical evacuation (MEDEVAC) SoS exemplar for Security Requirements Engineering tool-support.
Assessing System of Systems Security Risk and Requirements with OASoSIS
Conference: 5th International Workshop on Evolving Security & Privacy Requirements Engineering
Dates: 20 August 2018
Assessing System of Systems Security Risk and Requirements with OASoSIS.
Editors: Beckers, K., Lee, S.-W. and Mead, N.R.