loading
Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Paper Unlock

Authors: Sandra Domenique Zinsmaier 1 ; 2 ; 3 ; Hanno Langweg 4 ; 1 and Marcel Waldvogel 3

Affiliations: 1 HTWG Konstanz University of Applied Sciences, Konstanz, Germany ; 2 Siemens Logistics GmbH, Konstanz, Germany ; 3 University of Konstanz, Konstanz, Germany ; 4 Department of Information Security and Communication Technology, Faculty of Information Technology and Electrical Engineering, NTNU, Norwegian University of Science and Technology, Gjøvik, Norway

Keyword(s): Common Criteria, GDPR, Privacy by Design, Requirements Engineering, Security by Design.

Abstract: We propose and apply a requirements engineering approach that focuses on security and privacy properties and takes into account various stakeholder interests. The proposed methodology facilitates the integration of security and privacy by design into the requirements engineering process. Thus, specific, detailed security and privacy requirements can be implemented from the very beginning of a software project. The method is applied to an exemplary application scenario in the logistics industry. The approach includes the application of threat and risk rating methodologies, a technique to derive technical requirements from legal texts, as well as a matching process to avoid duplication and accumulate all essential requirements.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.149.251.155

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Zinsmaier, S.; Langweg, H. and Waldvogel, M. (2020). A Practical Approach to Stakeholder-driven Determination of Security Requirements based on the GDPR and Common Criteria. In Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP; ISBN 978-989-758-399-5; ISSN 2184-4356, SciTePress, pages 473-480. DOI: 10.5220/0008960604730480

@conference{icissp20,
author={Sandra Domenique Zinsmaier. and Hanno Langweg. and Marcel Waldvogel.},
title={A Practical Approach to Stakeholder-driven Determination of Security Requirements based on the GDPR and Common Criteria},
booktitle={Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP},
year={2020},
pages={473-480},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0008960604730480},
isbn={978-989-758-399-5},
issn={2184-4356},
}

TY - CONF

JO - Proceedings of the 6th International Conference on Information Systems Security and Privacy - ICISSP
TI - A Practical Approach to Stakeholder-driven Determination of Security Requirements based on the GDPR and Common Criteria
SN - 978-989-758-399-5
IS - 2184-4356
AU - Zinsmaier, S.
AU - Langweg, H.
AU - Waldvogel, M.
PY - 2020
SP - 473
EP - 480
DO - 10.5220/0008960604730480
PB - SciTePress

- Science and Technology Publications, Lda.
RESOURCES

Proceedings

Papers

Authors

Ontology

CONTACTS

Science and Technology Publications, Lda
Avenida de S. Francisco Xavier, Lote 7 Cv. C,
2900-616 Setúbal, Portugal.

Phone: +351 265 520 185 (National fixed network call)
Fax: +351 265 520 186
Email: info@scitepress.org

EXTERNAL LINKS

PRIMORIS

INSTICC

SCITEVENTS

CROSSREF

PROCEEDINGS SUBMITTED FOR INDEXATION BY:

dblp

Ei Compendex

SCOPUS

Semantic Scholar

Google Scholar

Microsoft Academic