Refining Security Requirement Elicitation from Business Processes using Method Engineering
2015 (English)In: Joint Proceedings of the BIR 2015 Workshops and Doctoral Consortium co-located with 14th International Conference on Perspectives in Business Informatics Research (BIR 2015), Tartu, Estonia, August 26-28, 2015, 2015, Vol. 1420, 98-109 p.Conference paper (Refereed)Text
A method defines a systematic process for problem solving including the required aids and resources. The transfer of method knowledge from the developers to other users requires a certain level of maturity and documentation of the method. Based on a method for security requirements elicitation from business processes (SREBP), we demonstrate how approaches from method engineering can be used to refine methods and improve transferability and maturity of method descriptions. The contributions of the paper are (1) to show how a component-based method view can be applied in method refinement, (2) the actual refinement process for SREBP integrating work procedure, cooperation principles and notation, and (3) initial experiences and lessons learned from refining SREBP.
Place, publisher, year, edition, pages
2015. Vol. 1420, 98-109 p.
, CEUR Workshop Proceedings, ISSN 1613-0073 ; 1420
Security Requirements Elicitation, Method Engineering, Business Process Models, Method Knowledge Transfer
Other Electrical Engineering, Electronic Engineering, Information Engineering
IdentifiersURN: urn:nbn:se:hj:diva-28616ScopusID: 2-s2.0-84940670033OAI: oai:DiVA.org:hj-28616DiVA: diva2:881836