Please use this identifier to cite or link to this item:
Title: Evaluating software security change requests: A COSMIC-based quantification approach
Authors: Haoues, Mariem
Sellami, Asma
Ben-Abdallah, Hanene
Demirörs, Onur
Keywords: COSMIC method ISO/IEC 19761
Functional Size Measurement
Non-functional requirements
Security systems
System requirements
Technical change
Issue Date: 2019
Publisher: Institute of Electrical and Electronics Engineers
Abstract: Software project scope defines functional and non-functional requirements. These requirements may change to satisfy the customers' needs. However, the control of scope creep represents one of the success keys in software project management. Changes in non-functional requirements affect the ISO/IEC 25010 quality characteristics such as security, portability, etc. Furthermore, some of these quality characteristics may evolve throughout the software life cycle into functional requirements. In this paper, we explore the use of COSMIC method-ISO/IEC 19761 to quantify and evaluate security change requests. Measuring the functional size of security change requests allows stakeholders to make appropriate decisions about whether to accept, defer, or deny the change. © 2019 IEEE.
Description: 45th Euromicro Conference on Software Engineering and Advanced Applications, SEAA 2019 -- 28 August 2019 through 30 August 2019
ISBN: 9781728132853
Appears in Collections:Computer Engineering / Bilgisayar Mühendisliği
Scopus İndeksli Yayınlar Koleksiyonu / Scopus Indexed Publications Collection
WoS İndeksli Yayınlar Koleksiyonu / WoS Indexed Publications Collection

Files in This Item:
File SizeFormat 
Evaluating_Software.pdf743.51 kBAdobe PDFView/Open
Show full item record

CORE Recommender


checked on Mar 27, 2023

Page view(s)

checked on Mar 27, 2023


checked on Mar 27, 2023

Google ScholarTM



Items in GCRIS Repository are protected by copyright, with all rights reserved, unless otherwise indicated.