This paper presents a conceptual framework for security engineering, with a strong focus on
security requirements elicitation and analysis. This conceptual framework establishes a …

This systematic literature review intends to determine the extent to which contribution is
available to assist organisations and interested parties to understand better or comply with …

Context: Modern internet-based services, ranging from food-delivery to home-caring,
leverage the availability of multiple programmable devices to provide handy services …

Agile software development has been used by industry to create a more flexible and lean
software development process, ie making it possible to develop software at a faster rate and …

Established standards on security and risk management provide guidelines and advice to
organizations and other stakeholders on how to fulfill their security needs. However …

We compare four high-profile waterfall security-engineering processes (CLASP, Microsoft
SDL, Cigital Touchpoints and Common Criteria) with the available preconditions within agile …

This paper was produced to focus attention on the opportunities and challenges for
embedding information assurance (IA) considerations into Agile development and …

In order to gain their customers' trust, software vendors can certify their products according to
security standards, eg, the Common Criteria (ISO 15408). A Common Criteria certification …

Software product line engineering has proven to be one of the most successful paradigms
for develo** a diversity of similar software applications and software-intensive systems at …

Security requirements are non-functional requirements which are employed to protect the
information from unauthorized users. After the requirements elicitation process, a system …