Output details
11 - Computer Science and Informatics
University of East London
Enhancing security requirements engineering by organizational learning
<09>This paper introduces for the first time an automated approach to reuse existing organisational security related experiences using heuristic requirements assistant tool. It demonstrates the use of trained Bayesian classifier for heuristically categorizing security-relevant and security-related requirements. Three industrial requirements specification documents are used for evaluation and results produced with a few false positives. The approach succeeds in assisting requirements engineers when security experts are not available. First phase of this investigation received Runner up to the best paper award in the International Working Conference on Requirements Engineering: Foundation for Software Quality (2010).