A fuzzy framework for prioritization and partial selection of security requirements in software projects

Mougouei, Davoud ORCID: https://orcid.org/0000-0002-4271-9174 and Powers, David M.W. and Mougouei, Elahe (2019) A fuzzy framework for prioritization and partial selection of security requirements in software projects. Journal of Intelligent and Fuzzy Systems, 37 (2). pp. 2671-2686. ISSN 1064-1246


Abstract

Resource limitations in software projects rarely allow for the security requirements to be fully realized. As such, Prioritization and Selection (PAS) techniques are used to find an optimal subset of the requirements. Consequently, some of the security requirements will be ignored. But ignoring security requirements may (a) leave some of the security threats unattended and (b) negatively impact the effectiveness of the selected requirements. To mitigate this, we have proposed a fuzzy framework, referred to as Prioritization And Partial Selection (PAPS), that reduces the number of ignored security requirements by allowing for partial satisfaction of those requirements. We achieve this by relaxing the satisfaction conditions of security requirements, when tolerated, based on their priorities specified by a fuzzy inference system. Taking into account the partiality of security in PAPS mitigates the adverse impact of ignoring security requirements and enhances the accuracy of prioritization and selection. Our proposed framework is scalable to a large number of requirements.


Statistics for USQ ePrint 46108
Statistics for this ePrint Item
Item Type: Article (Commonwealth Reporting Category C)
Refereed: Yes
Item Status: Live Archive
Faculty/School / Institute/Centre: No Faculty
Faculty/School / Institute/Centre: No Faculty
Date Deposited: 03 Mar 2022 23:13
Last Modified: 23 Mar 2022 05:33
Uncontrolled Keywords: Fuzzy; Partial Selection; Requirements; Security
Fields of Research (2020): 46 INFORMATION AND COMPUTING SCIENCES > 4602 Artificial intelligence > 460299 Artificial intelligence not elsewhere classified
Identification Number or DOI: https://doi.org/10.3233/JIFS-182907
URI: http://eprints.usq.edu.au/id/eprint/46108

Actions (login required)

View Item Archive Repository Staff Only