Experiences from Using the CORAS Methodology to Analyze a Web Application
نویسندگان
چکیده
EXECUTIVE SUMMARY During a field trial performed at the Norwegian telecom company NetCom from May 2003 to July 2003, a methodology for model-based risk analysis was assessed. The chosen methodology was the CORAS methodology (CORAS, 2000), which has been developed in a European research project carried out by 11 European companies and research institutes partly funded by the European Union. The risk analysis and assessment were carried out by the Norwegian research institute SINTEF in cooperation with NetCom. NetCom (www.netcom.no) is one of the main mobile phone network providers in Norway. Their ‘MinSide’ application offers their customers access to their personal account information via the Internet, enabling them to view and change the properties of their mobile phone subscription. ‘MinSide’ deals with a lot of sensitive IGI PUBLISHING
منابع مشابه
مقایسۀ کاربرد انواع روشهای ارزیابی دسترسپذیری وبسایتها مطالعۀ موردی: وبسایت وزارتخانههای دولت جمهوری اسلامی ایران)
Purpose: The present research aims to comparatively study different methods for evaluating the accessibility of websites and analyze the results of case study concerning websites of ministries of Iranian government, in order to indicate the strengths, weaknesses, and differences in evaluation findings by applying each of website accessibility methods. Methodology: In this paper, initially the ...
متن کاملLived experiences of military nurses from war- a mini-review
Background and Aim: Military nurses have acquired valuable experiences from caring for patients in war zones. Analysis of these experiences can create valuable knowledge for health care providers. The purpose of this study is to explore and analyze the lived experiences of military nurses from the war extracted from published papers. Methods: In this mini-review, an extensive search was conduct...
متن کاملEvaluation of the learning management system using students’ perceptions
Background: Learning Management System (LMS) is a web-based system designed to support teaching and learning at an institution. The capabilities of any LMS are required to be evaluated to detect the room for improvement. This study aimed at discovering the students’ perceptions of the functions of the LMS at Iran University of Medical Sciences (IUMS). Methods: This qualitative s...
متن کاملSpecifying Legal Risk Scenarios Using the CORAS Threat Modelling Language
The paper makes two main contributions: (1) It presents experiences from using the CORAS language for security threat modelling to specify legal risk scenarios. These experiences are summarised in the form of requirements to a more expressive language providing specific support for the legal domain. (2) Its second main contribution is to present ideas towards the fulfilment of these requirement...
متن کاملCORAS methodology for model-based risk asessment
This report provides the final version of the CORAS methodology for model-based risk assessment (MBRA). The CORAS methodology for MBRA ispresented in terms of concrete recommendations and layered guidelines, aswell as templates and supportive descriptions. D2.4 also provides a refinedsub-specification for the CORAS Platform. Finally, the report includes andrefines the experi...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- J. Cases on Inf. Techn.
دوره 7 شماره
صفحات -
تاریخ انتشار 2005