Towards Security Requirements: Iconicity as a Feature of an Informal Modeling Language
نویسندگان
چکیده
Self-adaptive systems need to be designed with respect to threats within their operating conditions. Identifying such threats during the design phase can benefit from the involvement of stakeholders. Using a system model, the stakeholders, who may neither be IT experts nor security experts, can identify threats as a first step towards formulating security requirements. To support it, the modeling language might possess adequate features to support this task. This paper investigates how iconic signs as a feature of an informal modeling language can contribute to eliciting security requirements by non-experts. Taking urban grid as a case, we relate benefits and specifics of using iconic signs to the two modeling challenges: i) reducing the cognitive complexity required to understand and model a system by non-experts, and ii) facilitating the threat identification activity using a system model. Outputs of three experiments suggest that iconic signs do assists in addressing the challenges.
منابع مشابه
The bridge of iconicity: from a world of experience to the experience of language
Iconicity, a resemblance between properties of linguistic form (both in spoken and signed languages) and meaning, has traditionally been considered to be a marginal, irrelevant phenomenon for our understanding of language processing, development and evolution. Rather, the arbitrary and symbolic nature of language has long been taken as a design feature of the human linguistic system. In this pa...
متن کاملCrime Prevention in Urban Design: towards Space Syntax Approach as a Quantitative Analytic Modeling of Qualitative Issue of Security (Based on Spatial Configuration)
متن کامل
Teachers' Attitudes towards Teaching in Formal vs. Informal ELT Contexts
Up to now, many studies have been done to show the origin of attitudes and their relationships with behaviors or actions. Some of those works have focused on students' attitudes and some have introduced the various contexts of language teaching and learning. These studies were enough to give a new impetus for conducting the present investigation. This paper investigated the teachers' attitudes ...
متن کاملAn Authoring Tool for Informal and Formal Requirements Specifications
We describe foundations and design principles of a tool that supports authoring of informal and formal software requirements specifications simultaneously and from a single source. The tool is an attempt to bridge the gap between completely informal requirements specifications (as found in practice) and formal ones (as needed in formal methods). The user is supported by an interactive syntax-di...
متن کاملConnecting Security Requirements Analysis and Secure Design Using Patterns and UMLsec
Existing approaches only provide informal guidelines for the transition from security requirements to secure design. Carrying out this transition is highly non-trivial and error-prone, leaving the risk of introducing vulnerabilities. This paper presents a pattern-oriented approach to connect security requirements analysis and secure architectural design. Following the divide & conquer principle...
متن کامل