Abstract
Identifying threats and risks to complex systems often requires some form of brainstorming. In addition, eliciting security requirements involves making traceable decisions about which risks to mitigate and how. The complexity and dynamics of modern socio-technical systems mean that their security cannot be formally proven. Instead, some researchers have turned to modeling the claims underpinning a risk assessment and the arguments which support security decisions. As a result, several argumentation-based risk analysis and security requirements elicitation frameworks have been proposed. These draw upon existing research in decision making and requirements engineering. Some provide tools to graphically model the underlying argumentation structures, with varying degrees of granularity and formalism. In this paper, we compare these approaches, discuss their applicability and suggest avenues …
| Original language | English |
|---|---|
| Title of host publication | Graphical Models for Security |
| Subtitle of host publication | 4th International Workshop, GraMSec 2017, Santa Barbara, CA, USA, August 21, 2017, Revised Selected Papers |
| Editors | Peng Liu, Sjouke Mauw, Ketil Stolen |
| Publisher | Springer |
| Pages | 1 - 16 |
| Number of pages | 16 |
| ISBN (Electronic) | 978-3-319-74860-3 |
| ISBN (Print) | 978-3-319-74859-7 |
| DOIs | |
| Publication status | Published - 2018 |
| Event | 4th International Workshop on Graphical Models for Security, GraMSec 2017 - University Center Corwin Pavilion, Santa Barbara, United States Duration: 21 Aug 2017 → 21 Aug 2017 Conference number: 4 https://www.gramsec.uni.lu/2017/ |
Publication series
| Name | Lecture Notes in Computer Science |
|---|---|
| Volume | 10744 |
Workshop
| Workshop | 4th International Workshop on Graphical Models for Security, GraMSec 2017 |
|---|---|
| Abbreviated title | GraMSec |
| Country/Territory | United States |
| City | Santa Barbara |
| Period | 21/08/17 → 21/08/17 |
| Internet address |
Keywords
- graphical modeling
- security arguments