How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods

August 2007 • Technical Note

Nancy R. Mead

In this 2007 report, Nancy Mead describes SQUARE, and outlines other methods used for identifying security requirements.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2007-TN-021

DOI (Digital Object Identifier):

10.1184/R1/6574109.v1

Subjects

Abstract

The Security Quality Requirements Engineering (SQUARE) method, developed at the Carnegie Mellon Software Engineering Institute, provides a systematic way to identify security requirements in a software development project. This report describes SQUARE and then describes other methods used for identifying security requirements, such as the Comprehensive, Lightweight Application Security Process, the Security Requirements Engineering Process, and Tropos, and compares them with SQUARE. The report concludes with some guidelines for selecting a method and a look at some related trends in requirements engineering.

Download PDF

Part of a Collection

Cybersecurity Engineering Research: Security Quality Requirements Engineering (SQUARE) Collection

Cite This Report

SEI

Mead, Nancy. How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods. CMU/SEI-2007-TN-021. Software Engineering Institute, Carnegie Mellon University. 2007. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257

IEEE

Mead. Nancy, "How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Note CMU/SEI-2007-TN-021, 2007. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257

APA

Mead, Nancy. (2007). How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods (CMU/SEI-2007-TN-021). Retrieved March 30, 2023, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257

CHI

Nancy Mead. How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods (CMU/SEI-2007-TN-021). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2007. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257

MLA

Mead, Nancy. 2007. How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods (Technical Report CMU/SEI-2007-TN-021). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257

BibTex

@techreport{MeadHowTo2007,
title={How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods},
author={Nancy Mead},
year={2007},
number={CMU/SEI-2007-TN-021},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8257} }

Ask a question about this Technical Note

Software Engineering Institute