@inbook{16473,
  keywords = {security requirement engineering, security evaluation, software modelling, UML profile, common criteria (ISO/IEC 15408)},
  author = {Amara Naseer and Zhiqiu Huang and Awais Ali and Guojun Wang and Jun Feng and Md Bhuiyan and Rongxing Lu},
  title = {Modelling Security Requirements for Software Development with Common Criteria},
  abstract = {Designing software needs to address the issues of adaptation and evaluation in terms of object-oriented concepts to prevent the loss of resources in terms of system failure. System security assessments are common practice, and system certification according to a standard requires submitting relevant software security information to applicable authorities. Many security-related standards exist to develop various security-critical systems; however, Common Criteria (ISO/IEC 15408) is an International de-facto standard that assures specification, implementation, and evaluation of an IT security product. This research will aid in better communication and enhanced collaboration among different stakeholders, especially between software and security engineers, by proposing a model of security-related concepts in de-facto standard Unified Modeling Language (UML). In this paper, we present a Usage Scenario and a Conceptual Model by extracting key security-related images from Common Criteria. The effectiveness is illustrated by a case study on Facebook Meta-Model, built for the evaluation purpose of Common Criteria models.},
  year = {2019},
  journal = {Security, Privacy, and Anonymity in Computation, Communication, and Storage},
  volume = {11611},
  edition = {1},
  number = {1611-3349},
  pages = {XVI, 506},
  month = {07/2019},
  publisher = {Springer},
  issn = {978-3-030-24907-6},
  isbn = {978-3-030-24906-9},
  url = {https://link.springer.com/chapter/10.1007\%2F978-3-030-24907-6_7},
}