Skip to main content

Corba: Crowdsourcing to Obtain Requirements from Regulations and Breaches

Guo, Hui, Kafalı, Özgur, Jeukeng, Anne-Liz, Williams, Laurie, Singh, Munindar P. (2019) Corba: Crowdsourcing to Obtain Requirements from Regulations and Breaches. Empirical Software Engineering, . pp. 1-30. ISSN 1382-3256. (doi:10.1007/s10664-019-09753-2) (Access to this publication is currently restricted. You may be able to access a copy if URLs are provided)

PDF - Author's Accepted Manuscript
Restricted to Repository staff only until 15 August 2020.
Contact us about this Publication Download (624kB)
[img]
Official URL
https://doi.org/10.1007/s10664-019-09753-2

Abstract

Modern software systems are deployed in sociotechnical settings, combining social entities (humans and organizations) with technical entities (software and devices). In such settings, on top of technical controls that implement security features of software, regulations specify how users should behave in security-critical situations. No matter how carefully the software is designed and how well regulations are enforced, such systems are subject to breaches due to social (user misuse) and technical (vulnerabilities in software) factors. Breach reports, often legally mandated, describe what went wrong during a breach and how the breach was remedied. However, breach reports are not formally investigated in current practice, leading to valuable lessons being lost regarding past failures

Item Type: Article
DOI/Identification number: 10.1007/s10664-019-09753-2
Uncontrolled keywords: Regulatory norms, Sociotechnical, systems HIPAA
Subjects: Q Science > QA Mathematics (inc Computing science) > QA 76 Software, computer programming, > QA76.76.E95 Expert Systems (Intelligent Knowledge Based Systems)
Divisions: Faculties > Sciences > School of Computing > Security Group
Depositing User: Ozgur Kafali
Date Deposited: 01 Jul 2019 07:50 UTC
Last Modified: 23 Jan 2020 04:16 UTC
Resource URI: https://kar.kent.ac.uk/id/eprint/75141 (The current URI for this page, for reference purposes)
Kafalı, Özgur: https://orcid.org/0000-0001-9296-2087
  • Depositors only (login required):

Downloads

Downloads per month over past year