Requirements Engineering for Survivable Systems

.............................................................................................................vii 1 Background ..................................................................................................1 1.1 Definition of Requirements Engineering.................................................1 1.2 Typical Requirements Engineering Activities..........................................2 1.3 The Role of Requirements Management ...............................................2 2 Requirements for Survivable Systems .......................................................5 2.1 Survivable Systems Definition ...............................................................5 2.2 Survivability Requirements ....................................................................6 2.2.1 System/Survivability Requirements............................................7 2.2.2 Usage/Intrusion Requirements...................................................9 2.2.3 Development Requirements.......................................................9 2.2.4 Operations Requirements ........................................................10 2.2.5 Evolution Requirements...........................................................10 2.3 Requirements Definition for Essential Services ...................................10 2.4 Requirements Definition for Survivability Services ...............................11 2.4.1 Resistance Service Requirements ...........................................11 2.4.2 Recognition Service Requirements ..........................................12 2.4.3 Recovery Service Requirements..............................................12 2.5 Summary.............................................................................................13 3 Methods and Practices that Support Requirements Engineering for Survivable Systems....................................................................................14 3.1 Some existing methods and practices .................................................14 3.1.1 Misuse and Abuse Cases ........................................................14 3.1.2 Formal Methods.......................................................................16 3.1.3 Use of Trees for Modeling and Analysis...................................17 3.1.4 Software Cost Reduction .........................................................21 3.1.5 Requirements Reuse ...............................................................23 3.1.6 Risk Analysis ...........................................................................23 3.1.7 Examples of Security Requirements ........................................25 3.2 Selection of Promising Methods and Practices for Security and Survivability Requirements Engineering ..............................................25