Shamal Faily
Designing usable and secure software with IRIS and CAIRIS.
Faily, Shamal
Authors
Abstract
Everyone expects the products and services they use to be secure, but 'building security in' at the earliest stages of a system's design also means designing for use as well. Software that is unusable to end-users and unwieldy to developers and administrators may be insecure as errors and violations may expose exploitable vulnerabilities. This book shows how practitioners and researchers can build both security and usability into the design of systems. It introduces the IRIS framework and the open source CAIRIS platform that can guide the specification of secure and usable software. It also illustrates how IRIS and CAIRIS can complement techniques from User Experience, Security Engineering and Innovation & Entrepreneurship in ways that allow security to be addressed at different stages of the software lifecycle without disruption. Real-world examples are provided of the techniques and processes illustrated in this book, making this text a resource for practitioners, researchers, educators, and students.
Citation
FAILY, S. 2018. Designing usable and secure software with IRIS and CAIRIS. Cham: Springer [online]. Available from: https://doi.org/10.1007/978-3-319-75493-2
| Book Type | Monograph |
|---|---|
| Online Publication Date | Dec 31, 2018 |
| Publication Date | Dec 31, 2018 |
| Deposit Date | Sep 17, 2021 |
| Publicly Available Date | Aug 23, 2022 |
| Publisher | Springer |
| ISBN | 9783319754925 |
| DOI | https://doi.org/10.1007/978-3-319-75493-2 |
| Keywords | Systems security; Systems usability; Requirements engineering; Software engineering; Software design; IRIS; CAIRIS |
| Public URL | https://rgu-repository.worktribe.com/output/1437888 |
| Additional Information | The file accompanying this record is a single representative chapter from the whole work. The entire book can be purchased from the publisher's website: https://doi.org/10.1007/978-3-319-75493-2 |
Files
FAILY 2018 Designing usable and secure (EXTRACT)
(170 Kb)
PDF
Copyright Statement
© Springer
You might also like
Privacy goals for the data lifecycle.
(2022)
Journal Article
Assessing system of systems information security risk with OASoSIS.
(2022)
Journal Article
Visualising personas as goal models to find security tensions.
(2021)
Journal Article
Evaluating privacy: determining user privacy expectations on the web.
(2021)
Journal Article
DPIA in context: applying DPIA to assess privacy risks of cyber physical systems.
(2020)
Journal Article
Downloadable Citations
About OpenAIR@RGU
Administrator e-mail: publications@rgu.ac.uk
This application uses the following open-source libraries:
SheetJS Community Edition
Apache License Version 2.0 (http://www.apache.org/licenses/)
PDF.js
Apache License Version 2.0 (http://www.apache.org/licenses/)
Font Awesome
SIL OFL 1.1 (http://scripts.sil.org/OFL)
MIT License (http://opensource.org/licenses/mit-license.html)
CC BY 3.0 ( http://creativecommons.org/licenses/by/3.0/)
Powered by Worktribe © 2025
Advanced Search