Proceedings IEEE Joint International Conference on Requirements Engineering (2002)
Sept. 9, 2002 to Sept. 13, 2002
Robert Crook , The Open University
Darrel Ince , The Open University
Luncheng Lin , The Open University
Bashar Nuseibeh , The Open University
Everyone agrees that security is a problem, ranging from Microsoft to the banks that have been recent victims of rogue traders. What is paradoxical is that there does not seem to be a wholehearted commitment by both academics and industry to treat this topic systematically at the top level of requirements engineering. Our vision is of a future in which we inform the security requirements engineering process by organisational theory. This would act as the bridge between the well-ordered world of the software project informed by conventional requirements and the unexpected world of anti-requirements associated with the malicious user. We frame a vision for the requirements engineering community that would involve the community solving six difficult problems.
B. Nuseibeh, R. Crook, L. Lin and D. Ince, "Security Requirements Engineering: When Anti-Requirements Hit the Fan," Proceedings IEEE Joint International Conference on Requirements Engineering(RE), Essen, Germany, 2002, pp. 203.