Supporting the Development and Documentation of ISO 27001 Information Security Management Systems through Security Requirements Engineering Approaches.
Kristian BeckersStephan FaßbenderMaritta HeiselJan-Christoph KüsterHolger SchmidtPublished in: ESSoS (2012)
Keyphrases
- information security
- requirements engineering
- security requirements
- security issues
- management system
- security level
- information assurance
- information systems
- intrusion detection
- countermeasures
- technical issues
- systems engineering
- smart card
- software engineering
- network security
- requirements engineering process
- computer security
- automotive industry
- security patterns
- security risks
- information security management
- requirements elicitation
- systems development
- risk analysis
- goal oriented
- risk assessment
- life cycle
- cyber defense
- tool support
- requirements specification
- software intensive systems
- iso iec
- critical infrastructure
- data security
- sensitive data
- development process
- software development
- case study
- security management
- smart grid
- privacy concerns
- access control