In this paper, we discuss the use of formal requirements-engineering techniques in capturing security requirements for a Grid-based operating system. We use KAOS goal model to represent two security goals for Grid systems, namely authorisation and single-sign on authentication. We apply goal-refinement to derive security requirements for these two security goals and we develop a model of antigoals and show how system vulnerabilities and threats to the security goals can arise from such anti-models.
|Number of pages||8|
|Publication status||Published - Mar 2008|
|Event||Symposium on Requirements Engineering for Information Security - Barcelona, Spain|
Duration: 1 Mar 2008 → …
|Conference||Symposium on Requirements Engineering for Information Security|
|Abbreviated title||SRIES 2008|
|Period||1/03/08 → …|