UPM Institutional Repository

A fuzzy-based technique for describing security requirements of intrusion tolerant systems


Citation

Mougouei, Davoud and Wan Ab. Rahman, Wan Nurhayati (2013) A fuzzy-based technique for describing security requirements of intrusion tolerant systems. International Journal of Software Engineering and its Applications, 7 (2). pp. 99-112. ISSN 1738-9984

Abstract

To care for security in early stages of software development has always been a major engineering trend. However, due to the existence of unpreventable and accidental security faults within the system, it is not always possible to entirely identify and mitigate the security threats. This may eventually lead to security failure of the target system. To avoid security failure, it is required to incorporate fault tolerance (i.e. intrusion tolerant) into the security requirements of the system. In this paper, we propose a new technique toward description of security requirements of Intrusion Tolerant Systems (ITS) using fuzzy logic. We care for intrusion tolerance in security requirements of the system through considering partial satisfaction of security goals. This partiality is accepted and formally described through establishment of a Goal-Based Fuzzy Grammar (GFG) and its respective Goal -Based Fuzzy Language (GFL) for describing Security Requirement Model (SRM) of the target ITS.


Download File

[img]
Preview
 PDF (Abstract)
A fuzzy.pdf
Download (83kB) | Preview

Additional Metadata

Item Type: Article
Divisions: Faculty of Computer Science and Information Technology
Publisher: Science & Engineering Research Support Society
Keywords: Security fault; Security goal; Intrusion tolerance; Goal-based fuzzy grammar
Depositing User: Ms. Nida Hidayati Ghazali
Date Deposited: 09 Feb 2015 08:49
Last Modified: 07 Oct 2015 08:10
URI: http://psasir.upm.edu.my/id/eprint/30570
Statistic Details: View Download Statistic

Actions (login required)

View Item View Item