Evaluating Software Security Change Requests: a Cosmic-Based Quantification Approach
Loading...
Date
2019
Authors
Journal Title
Journal ISSN
Volume Title
Publisher
Institute of Electrical and Electronics Engineers
Open Access Color
Green Open Access
Yes
OpenAIRE Downloads
OpenAIRE Views
Publicly Funded
No
BIP! Indicators
Impulse
Average
Influence
Average
Popularity
Top 10%
Abstract
Software project scope defines functional and non-functional requirements. These requirements may change to satisfy the customers' needs. However, the control of scope creep represents one of the success keys in software project management. Changes in non-functional requirements affect the ISO/IEC 25010 quality characteristics such as security, portability, etc. Furthermore, some of these quality characteristics may evolve throughout the software life cycle into functional requirements. In this paper, we explore the use of COSMIC method-ISO/IEC 19761 to quantify and evaluate security change requests. Measuring the functional size of security change requests allows stakeholders to make appropriate decisions about whether to accept, defer, or deny the change. © 2019 IEEE.
Description
45th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2019 -- 28 August 2019 through 30 August 2019
Keywords
COSMIC method ISO/IEC 19761, Functional Size Measurement, Non-functional requirements, Security systems, System requirements, Technical change, System requirements, COSMIC method ISO/IEC 19761, Technical change, Security, Non-functional requirements, Functional size
Fields of Science
0202 electrical engineering, electronic engineering, information engineering, 02 engineering and technology
Citation
WoS Q
N/A
Scopus Q
N/A
OpenCitations Citation Count
3
Source
45th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2019
Volume
Issue
Start Page
268
End Page
275
PlumX Metrics
Citations
CrossRef : 2
Scopus : 4
Captures
Mendeley Readers : 12
Google Scholar™
