Eliciting Security Requirements for Business Processes of Legacy Systems - The Practice of Enterprise Modeling
Conference Papers Year : 2015

Eliciting Security Requirements for Business Processes of Legacy Systems

Abstract

The modernisation of enterprise legacy systems, without compromises in their functionality, is a demanding and time consuming endeavour. To retain the underlying business behaviour during their modernisation, the MARBLETM framework has been developed for the extraction of business process models from their source code. Building on top of that work, in this paper we propose an integrated approach for transforming the extracted legacy process models into Secure Tropos goal models. Such models facilitate the elicitation of security requirements in a high level of abstraction, which are then incorporated back into the process models of the modernised systems as security features. Therefore high level models can be derived from legacy source code with minimal manual intervention, where security can be elaborated by nontechnical stakeholders in alignment with organisational objectives.
Fichier principal
Vignette du fichier
978-3-319-25897-3_7_Chapter.pdf (861.92 Ko) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

hal-01442267 , version 1 (20-01-2017)

Licence

Identifiers

Cite

Nikolaos Argyropoulos, Luis Márquez Alcañiz, Haralambos Mouratidis, Andrew Fish, David G. Rosado, et al.. Eliciting Security Requirements for Business Processes of Legacy Systems. 8th Practice of Enterprise Modelling (P0EM), Nov 2015, Valencia, Spain. pp.91-107, ⟨10.1007/978-3-319-25897-3_7⟩. ⟨hal-01442267⟩
119 View
328 Download

Altmetric

Share

More