search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods

Technical Note
By
In this 2007 report, Nancy Mead describes SQUARE, and outlines other methods used for identifying security requirements.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2007-TN-021
DOI (Digital Object Identifier)
10.1184/R1/6574109.v1
Subjects

Abstract

The Security Quality Requirements Engineering (SQUARE) method, developed at the Carnegie Mellon Software Engineering Institute, provides a systematic way to identify security requirements in a software development project. This report describes SQUARE and then describes other methods used for identifying security requirements, such as the Comprehensive, Lightweight Application Security Process, the Security Requirements Engineering Process, and Tropos, and compares them with SQUARE. The report concludes with some guidelines for selecting a method and a look at some related trends in requirements engineering.

SHARE
Download PDF
Part of a Collection

Cybersecurity Engineering Research: Security Quality Requirements Engineering (SQUARE) Collection
Cite This Technical Note

Mead, N. (2007, August 1). How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods. (Technical Note CMU/SEI-2007-TN-021). Retrieved April 23, 2024, from https://doi.org/10.1184/R1/6574109.v1.

@techreport{mead_2007,
author={Mead, Nancy},
title={How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods},
month={Aug},
year={2007},
number={CMU/SEI-2007-TN-021},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6574109.v1},
note={Accessed: 2024-Apr-23}
}

Mead, Nancy. "How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods." (CMU/SEI-2007-TN-021). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, August 1, 2007. https://doi.org/10.1184/R1/6574109.v1.

N. Mead, "How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2007-TN-021, 1-Aug-2007 [Online]. Available: https://doi.org/10.1184/R1/6574109.v1. [Accessed: 23-Apr-2024].

Mead, Nancy. "How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods." (Technical Note CMU/SEI-2007-TN-021). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Aug. 2007. https://doi.org/10.1184/R1/6574109.v1. Accessed 23 Apr. 2024.

Mead, Nancy. How To Compare the Security Quality Requirements Engineering (SQUARE) Method with Other Methods. CMU/SEI-2007-TN-021. Software Engineering Institute. 2007. https://doi.org/10.1184/R1/6574109.v1

Ask a question about this Technical Note