Secured Requirement Specification Framework (SRSF)

R.A. Khan; K. Mustafa

doi:10.3844/ajassp.2008.1622.1629

Research Article Open Access

Secured Requirement Specification Framework (^SRSF)

R.A. Khan and K. Mustafa

Abstract

Generally, software engineers are poorly trained to elicit, analyze and specify security requirements, often confusing them with the architectural security mechanisms that are traditionally used to fulfill them. One of the most ignored parts of a security-enhanced software development lifecycle is the security requirements engineering process. Security should begin at the requirements level and must cover both overt functional security and emergent characteristics. A critical review of literature on the attempts in this regard reveals that there is no standard framework or model available for delivering secured software requirement specification. This study presents a framework for the security requirement specification called Secured Requirement Specification Framework (^SRSF), which is prescriptive in nature.

American Journal of Applied Sciences

Volume 5 No. 12, 2008, 1622-1629

DOI: https://doi.org/10.3844/ajassp.2008.1622.1629

Submitted On: 24 January 2008 Published On: 31 December 2008

How to Cite: Khan, R. & Mustafa, K. (2008). Secured Requirement Specification Framework (^SRSF). American Journal of Applied Sciences, 5(12), 1622-1629. https://doi.org/10.3844/ajassp.2008.1622.1629

Copyright: © 2008 R.A. Khan and K. Mustafa. This is an open access article distributed under the terms of the Creative Commons Attribution License, which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.

3,229 Views
3,018 Downloads
2 Citations

Download

Keywords

Software security
security requirement
risk analysis
use cases
abuse cases
secure software development life cycle