Skip to Main content Skip to Navigation
Conference papers

Improved Security Requirements Engineering using Knowledge Representation

Abstract : We introduce in this paper a security meta-model for our SysML-Sec framework, developed to improve the security requirements engineering process through the explicit representation of security concerns with knowledge representation techniques. This meta-model enables the specification of ontological concepts which define the semantics of the security artifacts introduced through SysML-Sec diagrams. This meta-model also enables representing the relationships that tie several such concepts together. This representation is then used for reasoning about the knowledge introduced by system designers as well as security experts through the graphical environment of the SysML-Sec framework. In addition to its documentary aspect, such a meta-model makes it possible to introduce different types of verifications of security requirements and threats, and especially consistency checks regarding the content of all diagrams. We finally present a prototype that integrates meta-model descriptions into the SysML-Sec framework and its implementation using Semantic Web technologies.
Complete list of metadatas

https://hal.telecom-paris.fr/hal-02412085
Contributor : Telecomparis Hal <>
Submitted on : Sunday, December 15, 2019 - 12:44:51 PM
Last modification on : Friday, July 31, 2020 - 11:28:04 AM

Identifiers

  • HAL Id : hal-02412085, version 1

Citation

Yves Roudier, Muhammad Sabir Idrees, Ludovic Apvrille. Improved Security Requirements Engineering using Knowledge Representation. 9ème conférence sur la Sécurité des Architectures Réseaux et des Systèmes d'Information, May 2014, Lyon, France. ⟨hal-02412085⟩

Share

Metrics

Record views

28