Identifying Implicit Vulnerabilities through Personas as Goal Models

August 11, 2020 Β· Declared Dead Β· πŸ› CyberICPS/SECPRE/ADIoT@ESORICS

πŸ‘» CAUSE OF DEATH: Ghosted
No code link whatsoever

"No code URL or promise found in abstract"

Evidence collected by the PWNC Scanner

Authors Shamal Faily, Claudia Iacob, Raian Ali, Duncan Ki-Aries arXiv ID 2008.04773 Category cs.SE: Software Engineering Cross-listed cs.CR, cs.HC Citations 3 Venue CyberICPS/SECPRE/ADIoT@ESORICS Last Checked 4 months ago
Abstract
When used in requirements processes and tools, personas have the potential to identify vulnerabilities resulting from misalignment between user expectations and system goals. Typically, however, this potential is unfulfilled as personas and system goals are captured with different mindsets, by different teams, and for different purposes. If personas are visualised as goal models, it may be easier for stakeholders to see implications of their goals being satisfied or denied, and designers to incorporate the creation and analysis of such models into the broader RE tool-chain. This paper outlines a tool-supported approach for finding implicit vulnerabilities from user and system goals by reframing personas as social goal models. We illustrate this approach with a case study where previously hidden vulnerabilities based on human behaviour were identified.
Community shame:
Not yet rated
Community Contributions

Found the code? Know the venue? Think something is wrong? Let us know!

πŸ“œ Similar Papers

In the same crypt β€” Software Engineering

Died the same way β€” πŸ‘» Ghosted