Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models

May 2008 • Technical Note

Nancy R. Mead, Venkatesh Viswanathan, Deepa Padmanabhan, Anusha Raveendran

In this 2008 report, the authors describe how SQUARE can be incorporated into standard lifecycle models for security-critical projects.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2008-TN-006

DOI (Digital Object Identifier):

10.1184/R1/6574325.v1

Subjects

Abstract

SQUARE (Security Quality Requirements Engineering) is a method for eliciting and prioritizing security requirements in software development projects. This report describes how SQUARE can be incorporated in standard life-cycle models for security-critical projects. Life-cycle models and process methods considered for the report are the waterfall model, Rational Unified Process, the spiral model, and Dynamic Systems Development Method (an agile method).

This report is for information technology managers and security professionals, management personnel with technical and information security knowledge, and any personnel who manage security-critical projects that follow standard life-cycle models.

Download PDF

Part of a Collection

Cite This Report

SEI

Mead, Nancy; Viswanathan, Venkatesh; Padmanabhan, Deepa; & Raveendran, Anusha. Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models. CMU/SEI-2008-TN-006. Software Engineering Institute, Carnegie Mellon University. 2008. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561

IEEE

Mead. Nancy, Viswanathan. Venkatesh, Padmanabhan. Deepa, and Raveendran. Anusha, "Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Note CMU/SEI-2008-TN-006, 2008. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561

APA

Mead, Nancy., Viswanathan, Venkatesh., Padmanabhan, Deepa., & Raveendran, Anusha. (2008). Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models (CMU/SEI-2008-TN-006). Retrieved March 30, 2023, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561

CHI

Nancy Mead, Venkatesh Viswanathan, Deepa Padmanabhan, & Anusha Raveendran. Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models (CMU/SEI-2008-TN-006). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2008. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561

MLA

Mead, Nancy., Viswanathan, Venkatesh., Padmanabhan, Deepa., & Raveendran, Anusha. 2008. Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models (Technical Report CMU/SEI-2008-TN-006). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561

BibTex

@techreport{MeadIncorporatingSecurity2008,
title={Incorporating Security Quality Requirements Engineering (SQUARE) into Standard Life-Cycle Models},
author={Nancy Mead and Venkatesh Viswanathan and Deepa Padmanabhan and Anusha Raveendran},
year={2008},
number={CMU/SEI-2008-TN-006},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=8561} }

Ask a question about this Technical Note

Software Engineering Institute