| Presentation | 2019-03-02 Development of Knowledge Presentation Method in Security Requirement Analysis and Design Using a Software Security Knowledge Base and Evaluation by a Case Study Yuki Yamada, Atsuo Hazeyama, Nobukazu Yoshioka, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | In recent years, the threat of cyber attacks such as information disclosure due to unauthorized access has become serious. Therefore, development of secure software is desired. However, most developers are not always security experts. The authors have classified and associated known security knowledge in the Security Knowledge Base. In order for developers to effectively use such security knowledge, knowledge in the Security Knowledge Base needs to be extracted appropriately according to the development stage. In this paper, we describe a security knowledge presentation method that allows developers to select security knowledge in the Software Security Knowledge Base at the time of requirement analysis and design in an appropriate manner. We conduct a case study on the proposed method and discuss the usefulness of the proposed method. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Secure software development support / Knowledge base for secure software development / Security Requirements / Security design |
| Paper # | KBSE2018-62 |
| Date of Issue | 2019-02-22 (KBSE) |
| Conference Information | |
| Committee | KBSE |
|---|---|
| Conference Date | 2019/3/1(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Doshisha University Kambaikan |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | Fumihiro Kumeno(Nippon Inst. of Tech.) |
| Vice Chair | Hiroyuki Nakagawa(Osaka Univ.) |
| Secretary | Hiroyuki Nakagawa(NTT) |
| Assistant | Ryuichi Takahashi(Ibaraki Univ.) / Yoshinori Tanabe(Tsurumi Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Knowledge-Based Software Engineering |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Development of Knowledge Presentation Method in Security Requirement Analysis and Design Using a Software Security Knowledge Base and Evaluation by a Case Study |
| Sub Title (in English) | |
| Keyword(1) | Secure software development support |
| Keyword(2) | Knowledge base for secure software development |
| Keyword(3) | Security Requirements |
| Keyword(4) | Security design |
| 1st Author's Name | Yuki Yamada |
| 1st Author's Affiliation | Tokyo Gakugei University(Tokyo Gakugei Univ.) |
| 2nd Author's Name | Atsuo Hazeyama |
| 2nd Author's Affiliation | Tokyo Gakugei University(Tokyo Gakugei Univ.) |
| 3rd Author's Name | Nobukazu Yoshioka |
| 3rd Author's Affiliation | National Institute of Informatics(NII) |
| Date | 2019-03-02 |
| Paper # | KBSE2018-62 |
| Volume (vol) | vol.118 |
| Number (no) | KBSE-463 |
| Page | pp.pp.51-56(KBSE), |
| #Pages | 6 |
| Date of Issue | 2019-02-22 (KBSE) |