Ioannis Karakatsanis scite author profile

Developers have to ensure that their systems meet certain security requirements. Structured argumentation can be a powerful tool for developers to deal with system behavior, vulnerabilities, and threats. Haley's framework is based on construction of a context for the system, representing security requirements as constraints, and developing satisfaction arguments for the security requirements. Incomplete and uncertain information and limited resources force the developers to settle for goodenough security. Risk assessment in Security Argumentation (RISA) extends Haley's method with risk assessment. RISA uses publicly available catalogs of security expertise and most common attack patterns to support risk assessment. These catalogs provide valuable information to the assessment process and help the developers identify mitigations for security requirements satisfaction. RISA developers stated the most pressing issue of their future work is the validation of RISA. In previous studies, no validation of RISA framework has been done on a complex system. Hence, this work evaluates RISA framework by applying it to the security requirements analysis of the address generation module of the decentralized, peer-to-peer communication protocol BitMessage. In addition, based on this analysis, we suggest a new set of requirements to improve the security of the current BitMessage client version.

show abstract

A Semi-automatic Approach for Tech Mining and Interactive Taxonomy Visualization

Karakatsanis¹,

Tsoupos²,

Woon³

2017

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Ioannis Karakatsanis

Data mining approach to monitoring the requirements of the job market: A case study

Short-term electricity load forecasting using time series and ensemble learning methods

Argumentation-Based Security Requirements Analysis: BitMessage Case Study

A Semi-automatic Approach for Tech Mining and Interactive Taxonomy Visualization

Contact Info

Product

Resources

About