Pattern and Security Requirements (Record no. 51599)
[ view plain ]
| 000 -LEADER | |
|---|---|
| fixed length control field | 04036nam a22005415i 4500 |
| 001 - CONTROL NUMBER | |
| control field | 978-3-319-16664-3 |
| 005 - DATE AND TIME OF LATEST TRANSACTION | |
| control field | 20200420220216.0 |
| 008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION | |
| fixed length control field | 150415s2015 gw | s |||| 0|eng d |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| ISBN | 9783319166643 |
| -- | 978-3-319-16664-3 |
| 082 04 - CLASSIFICATION NUMBER | |
| Call Number | 005.8 |
| 100 1# - AUTHOR NAME | |
| Author | Beckers, Kristian. |
| 245 10 - TITLE STATEMENT | |
| Title | Pattern and Security Requirements |
| Sub Title | Engineering-Based Establishment of Security Standards / |
| 300 ## - PHYSICAL DESCRIPTION | |
| Number of Pages | XXV, 474 p. 186 illus. |
| 505 0# - FORMATTED CONTENTS NOTE | |
| Remark 2 | Foreword -- Preface -- Introduction -- Background -- The PEERESS Framework -- The CAST Method for Comparing Security Standards -- Relating ISO 27001 to the Conceptual Framework for Security Requirements Engineering Methods -- Supporting ISO 27001 compliant ISMS Establishment with Si* -- Supporting ISO 27001 Establishment with CORAS -- Supporting Common Criteria Security Analysis with Problem Frames -- Supporting ISO 26262 Hazard Analysis with Problem Frames -- A Catalog of Context-Patterns -- Initiating a Pattern Language for Context-Patterns -- Supporting the Establishment of a cloud-specific ISMS according to ISO 27001 using the Cloud System Analysis Pattern -- Validation and Extension of our Context-Pattern Approach -- Conclusion. |
| 520 ## - SUMMARY, ETC. | |
| Summary, etc | Security threats are a significant problem for information technology companies today. This book focuses on how to mitigate these threats by using security standards and provides ways to address associated problems faced by engineers caused by ambiguities in the standards. The security standards are analysed, fundamental concepts of the security standards presented, and the relations to the elementary concepts of security requirements engineering (SRE) methods explored. Using this knowledge, engineers can build customised methods that support the establishment of security standards. Standards such as Common Criteria or ISO 27001 are explored and several extensions are provided to well-known SRE methods such as Si*, CORAS, and UML4PF to support the establishment of these security standards. Through careful analysis of the activities demanded by the standards, for example the activities to establish an Information Security Management System (ISMS) in compliance with the ISO 27001 standard, methods are proposed which incorporate existing security requirement approaches and patterns. Understanding Pattern and Security Requirements engineering methods is important for software engineers, security analysts, and other professionals that are tasked with establishing a security standard, as well as researchers who aim to investigate the problems with establishing security standards. The examples and explanations in this book are designed to be understandable by all these readers. |
| 856 40 - ELECTRONIC LOCATION AND ACCESS | |
| Uniform Resource Identifier | http://dx.doi.org/10.1007/978-3-319-16664-3 |
| 942 ## - ADDED ENTRY ELEMENTS (KOHA) | |
| Koha item type | eBooks |
| 264 #1 - | |
| -- | Cham : |
| -- | Springer International Publishing : |
| -- | Imprint: Springer, |
| -- | 2015. |
| 336 ## - | |
| -- | text |
| -- | txt |
| -- | rdacontent |
| 337 ## - | |
| -- | computer |
| -- | c |
| -- | rdamedia |
| 338 ## - | |
| -- | online resource |
| -- | cr |
| -- | rdacarrier |
| 347 ## - | |
| -- | text file |
| -- | |
| -- | rda |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Computer science. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Computer security. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Computers. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Management information systems. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Quality control. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Reliability. |
| 650 #0 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Industrial safety. |
| 650 14 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Computer Science. |
| 650 24 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Systems and Data Security. |
| 650 24 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Management of Computing and Information Systems. |
| 650 24 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Quality Control, Reliability, Safety and Risk. |
| 650 24 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Computing Methodologies. |
| 650 24 - SUBJECT ADDED ENTRY--SUBJECT 1 | |
| -- | Models and Principles. |
| 912 ## - | |
| -- | ZDB-2-SCS |
No items available.