Bridging The Gap Between Requirement And Security Through Secure Requirement Specification Checklist
Requirement phase of the software development is the most appropriate and early stage for incorporating security.
Unfortunately, no efficient methodology or tool exists to address security at requirement phase. Almost negligible work has
been reported to assess the impact of security at requirement phase. Traditionally, security is often an afterthought but it is
necessary that security should begin at the requirement level which covers both functional security as well as its emergent
characteristics. Hence, it is important to identify security requirements of the system. In this paper, we propose a checklist for
security requirement and assess the security with the help of mapping requirement parameters and security attributes. The
total weight of security requirement is calculated with the DSR value and placed in security requirement traceability matrix.
Keywords- Software Security, Security Requirement, Confidentiality, Integrity, Availability, Authentication,
Non-Repudiation and Access Control