Security Requirement Engineering at a Telecom Provider

A
ARES
2008
2008 Third International Conference on Availability, Reliability and Security
Abstract - Security Requirement Engineering at a Telecom Provider

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Albin Zuccato Articles by Viktor Endersz Articles by Nils Daniels

2008 Third International Conference on Availability, Reliability and Security

March 04-March 07

ISBN: 978-0-7695-3102-1

	ASCII Text	x
	Albin Zuccato, Viktor Endersz, Nils Daniels, "Security Requirement Engineering at a Telecom Provider," Availability, Reliability and Security, International Conference on, pp. 1139-1147, 2008 Third International Conference on Availability, Reliability and Security, 2008.

	BibTex	x
	@article{ 10.1109/ARES.2008.14, author = {Albin Zuccato and Viktor Endersz and Nils Daniels}, title = {Security Requirement Engineering at a Telecom Provider}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3102-1}, pages = {1139-1147}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2008.14}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Security Requirement Engineering at a Telecom Provider SN - 978-0-7695-3102-1 SP1139 EP1147 A1 - Albin Zuccato, A1 - Viktor Endersz, A1 - Nils Daniels, PY - 2008 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Albin Zuccato

Viktor Endersz

Nils Daniels

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2008.14

To offer competitive products and services in the telecom business information security serves as an enabler and competitive factor. Unfortunately, traditional risk analysis and security engineering methods have shown to suffer from several shortcomings when applied to the telecom business. To overcome these shortcomings we propose a security engineering method called SKYDD covering information, infrastructure, and business requirements based on information classification. The method uses a combination of reference tables and checklists and addresses many of the shortcomings of traditional methods. Well-integrated in to the development process SKYDD has proven to simplify security requirement gathering, reduce lead times and provide consistent requirements across different projects and project organizations, much of this due to the fact that the method is designed to be used by non-security experts.

Citation:

Albin Zuccato, Viktor Endersz, Nils Daniels, "Security Requirement Engineering at a Telecom Provider," ares, pp.1139-1147, 2008 Third International Conference on Availability, Reliability and Security, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.