語系:
繁體中文
English
說明(常見問題)
登入
回首頁
切換:
標籤
|
MARC模式
|
ISBD
Pattern and Security Requirements = ...
~
SpringerLink (Online service)
Pattern and Security Requirements = Engineering-Based Establishment of Security Standards /
紀錄類型:
書目-語言資料,印刷品 : Monograph/item
正題名/作者:
Pattern and Security Requirements/ by Kristian Beckers.
其他題名:
Engineering-Based Establishment of Security Standards /
作者:
Beckers, Kristian.
面頁冊數:
XXV, 474 p. 186 illus.online resource. :
Contained By:
Springer Nature eBook
標題:
Computer security. -
電子資源:
https://doi.org/10.1007/978-3-319-16664-3
ISBN:
9783319166643
Pattern and Security Requirements = Engineering-Based Establishment of Security Standards /
Beckers, Kristian.
Pattern and Security Requirements
Engineering-Based Establishment of Security Standards /[electronic resource] :by Kristian Beckers. - 1st ed. 2015. - XXV, 474 p. 186 illus.online resource.
Foreword -- Preface -- Introduction -- Background -- The PEERESS Framework -- The CAST Method for Comparing Security Standards -- Relating ISO 27001 to the Conceptual Framework for Security Requirements Engineering Methods -- Supporting ISO 27001 compliant ISMS Establishment with Si* -- Supporting ISO 27001 Establishment with CORAS -- Supporting Common Criteria Security Analysis with Problem Frames -- Supporting ISO 26262 Hazard Analysis with Problem Frames -- A Catalog of Context-Patterns -- Initiating a Pattern Language for Context-Patterns -- Supporting the Establishment of a cloud-specific ISMS according to ISO 27001 using the Cloud System Analysis Pattern -- Validation and Extension of our Context-Pattern Approach -- Conclusion.
Security threats are a significant problem for information technology companies today. This book focuses on how to mitigate these threats by using security standards and provides ways to address associated problems faced by engineers caused by ambiguities in the standards. The security standards are analysed, fundamental concepts of the security standards presented, and the relations to the elementary concepts of security requirements engineering (SRE) methods explored. Using this knowledge, engineers can build customised methods that support the establishment of security standards. Standards such as Common Criteria or ISO 27001 are explored and several extensions are provided to well-known SRE methods such as Si*, CORAS, and UML4PF to support the establishment of these security standards. Through careful analysis of the activities demanded by the standards, for example the activities to establish an Information Security Management System (ISMS) in compliance with the ISO 27001 standard, methods are proposed which incorporate existing security requirement approaches and patterns. Understanding Pattern and Security Requirements engineering methods is important for software engineers, security analysts, and other professionals that are tasked with establishing a security standard, as well as researchers who aim to investigate the problems with establishing security standards. The examples and explanations in this book are designed to be understandable by all these readers.
ISBN: 9783319166643
Standard No.: 10.1007/978-3-319-16664-3doiSubjects--Topical Terms:
557122
Computer security.
LC Class. No.: QA76.9.A25
Dewey Class. No.: 005.8
Pattern and Security Requirements = Engineering-Based Establishment of Security Standards /
LDR
:03624nam a22004095i 4500
001
970044
003
DE-He213
005
20200702091918.0
007
cr nn 008mamaa
008
201211s2015 gw | s |||| 0|eng d
020
$a
9783319166643
$9
978-3-319-16664-3
024
7
$a
10.1007/978-3-319-16664-3
$2
doi
035
$a
978-3-319-16664-3
050
4
$a
QA76.9.A25
072
7
$a
UR
$2
bicssc
072
7
$a
COM053000
$2
bisacsh
072
7
$a
UR
$2
thema
072
7
$a
UTN
$2
thema
082
0 4
$a
005.8
$2
23
100
1
$a
Beckers, Kristian.
$e
author.
$4
aut
$4
http://id.loc.gov/vocabulary/relators/aut
$3
1265625
245
1 0
$a
Pattern and Security Requirements
$h
[electronic resource] :
$b
Engineering-Based Establishment of Security Standards /
$c
by Kristian Beckers.
250
$a
1st ed. 2015.
264
1
$a
Cham :
$b
Springer International Publishing :
$b
Imprint: Springer,
$c
2015.
300
$a
XXV, 474 p. 186 illus.
$b
online resource.
336
$a
text
$b
txt
$2
rdacontent
337
$a
computer
$b
c
$2
rdamedia
338
$a
online resource
$b
cr
$2
rdacarrier
347
$a
text file
$b
PDF
$2
rda
505
0
$a
Foreword -- Preface -- Introduction -- Background -- The PEERESS Framework -- The CAST Method for Comparing Security Standards -- Relating ISO 27001 to the Conceptual Framework for Security Requirements Engineering Methods -- Supporting ISO 27001 compliant ISMS Establishment with Si* -- Supporting ISO 27001 Establishment with CORAS -- Supporting Common Criteria Security Analysis with Problem Frames -- Supporting ISO 26262 Hazard Analysis with Problem Frames -- A Catalog of Context-Patterns -- Initiating a Pattern Language for Context-Patterns -- Supporting the Establishment of a cloud-specific ISMS according to ISO 27001 using the Cloud System Analysis Pattern -- Validation and Extension of our Context-Pattern Approach -- Conclusion.
520
$a
Security threats are a significant problem for information technology companies today. This book focuses on how to mitigate these threats by using security standards and provides ways to address associated problems faced by engineers caused by ambiguities in the standards. The security standards are analysed, fundamental concepts of the security standards presented, and the relations to the elementary concepts of security requirements engineering (SRE) methods explored. Using this knowledge, engineers can build customised methods that support the establishment of security standards. Standards such as Common Criteria or ISO 27001 are explored and several extensions are provided to well-known SRE methods such as Si*, CORAS, and UML4PF to support the establishment of these security standards. Through careful analysis of the activities demanded by the standards, for example the activities to establish an Information Security Management System (ISMS) in compliance with the ISO 27001 standard, methods are proposed which incorporate existing security requirement approaches and patterns. Understanding Pattern and Security Requirements engineering methods is important for software engineers, security analysts, and other professionals that are tasked with establishing a security standard, as well as researchers who aim to investigate the problems with establishing security standards. The examples and explanations in this book are designed to be understandable by all these readers.
650
0
$a
Computer security.
$3
557122
650
0
$a
Management information systems.
$3
561123
650
0
$a
Computer science.
$3
573171
650
0
$a
Quality control.
$3
573723
650
0
$a
Reliability.
$3
573603
650
0
$a
Industrial safety.
$3
568114
650
0
$a
Artificial intelligence.
$3
559380
650
0
$a
Computers.
$3
565115
650
1 4
$a
Systems and Data Security.
$3
677062
650
2 4
$a
Management of Computing and Information Systems.
$3
593928
650
2 4
$a
Quality Control, Reliability, Safety and Risk.
$3
671184
650
2 4
$a
Artificial Intelligence.
$3
646849
650
2 4
$a
Models and Principles.
$3
669634
710
2
$a
SpringerLink (Online service)
$3
593884
773
0
$t
Springer Nature eBook
776
0 8
$i
Printed edition:
$z
9783319166650
776
0 8
$i
Printed edition:
$z
9783319166636
776
0 8
$i
Printed edition:
$z
9783319365879
856
4 0
$u
https://doi.org/10.1007/978-3-319-16664-3
912
$a
ZDB-2-SCS
912
$a
ZDB-2-SXCS
950
$a
Computer Science (SpringerNature-11645)
950
$a
Computer Science (R0) (SpringerNature-43710)
筆 0 讀者評論
多媒體
評論
新增評論
分享你的心得
Export
取書館別
處理中
...
變更密碼[密碼必須為2種組合(英文和數字)及長度為10碼以上]
登入