The Community for Technology Leaders
2013 21st IEEE International Requirements Engineering Conference (RE) (2006)
Minneapolis/St. Paul, Minnesota, USA
Sept. 11, 2006 to Sept. 15, 2006
ISSN: 1090-705X
ISBN: 0-7695-2555-5
pp: 315-318
Nicola Zannone , University of Trento
John Mylopoulos , University of Trento
Paolo Giorgini , University of Trento
Fabio Massacci , University of Trento
ABSTRACT
<p>System vulnerabilities are often caused by the presence of conflicts within the organization where the system-to-be will eventually operate. In particular, conflicts of interest are very harmful since actors can exploit their positions/ roles relative to the system for gaining personal advantage. Capturing and resolving such conflicts is a necessary condition for developing secure information systems.</p> <p>In this paper, we show how conflicts of interest can be formally detected during requirements analysis. This allows system designers to investigate the causes for which conflicts may occur in an organization. Thereby, they can better understand the organizational structure and so provide appropriate countermeasures to resolve or at least mitigate them.</p>
INDEX TERMS
null
CITATION
Nicola Zannone, John Mylopoulos, Paolo Giorgini, Fabio Massacci, "Detecting Conflicts of Interest", 2013 21st IEEE International Requirements Engineering Conference (RE), vol. 00, no. , pp. 315-318, 2006, doi:10.1109/RE.2006.16
95 ms
(Ver )