Skip to main content

Visualising Personas as Goal Models to Find Security Tensions.

Faily, S., Iacob, C., Ali, R. and Ki-Aries, D., 2021. Visualising Personas as Goal Models to Find Security Tensions. Information and Computer Security, 29 (5), 787-815.

Full text available as:

[img]
Preview
PDF (OPEN ACCESS ARTICLE)
10-1108_ICS-03-2021-0035.pdf - Published Version
Available under License Creative Commons Attribution.

2MB
[img] PDF
PDF_Proof1.pdf - Accepted Version
Restricted to Repository staff only
Available under License Creative Commons Attribution Non-commercial.

1MB

DOI: 10.1108/ICS-03-2021-0035

Abstract

This paper presents a tool-supported approach for visualising personas as social goal models, which can subsequently be used to identify security tensions. We devised an approach for partially automating the construction of social goal models from personas. We provide two examples of how this approach can be used to identify previously hidden implicit vulnerabilities, and validate ethical hazards faced by penetration testers and safeguards that address them. Visualising personas as goal models makes it easier for stakeholders to see implications of their goals being satisfied or denied, and designers to incorporate the creation and analysis of such models into the broader RE tool-chain. Our approach can be adopted with minimal changes to existing User Experience (UX) and goal modelling approaches and Security Requirements Engineering tools.

Item Type:Article
ISSN:2056-4961
Uncontrolled Keywords:Personas; Goal Models; i*
Group:Faculty of Science & Technology
ID Code:35329
Deposited By: Symplectic RT2
Deposited On:26 Mar 2021 09:58
Last Modified:14 Mar 2022 14:26

Downloads

Downloads per month over past year

More statistics for this item...
Repository Staff Only -