State of the Journal Address

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/TSE.2008.12

January 2008 (vol. 34 no. 1) pp. 1-2

	This Article
	PURCHASE ARTICLE: $0 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jeff Kramer

	ASCII Text	x
	Jeff Kramer, "State of the Journal Address," IEEE Transactions on Software Engineering, vol. 34, no. 1, pp. 1-2, January, 2008.

	BibTex	x
	@article{ 10.1109/TSE.2008.12, author = {Jeff Kramer}, title = {State of the Journal Address}, journal ={IEEE Transactions on Software Engineering}, volume = {34}, number = {1}, issn = {0098-5589}, year = {2008}, pages = {1-2}, doi = {http://doi.ieeecomputersociety.org/10.1109/TSE.2008.12}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - JOUR JO - IEEE Transactions on Software Engineering TI - State of the Journal Address IS - 1 SN - 0098-5589 SP1 EP2 EPD - 1-2 A1 - Jeff Kramer, PY - 2008 VL - 34 JA - IEEE Transactions on Software Engineering ER -

Jeff Kramer

[080101331] I. Alexander , “Misuse Cases in Systems Engineering,” Computing and Control Eng. J., vol. 14, no. 1, pp. 40-45, Feb. 2003.
[080101332] J.H. Allen , “CERT System and Network Security Practices,” Proc. Fifth Nat'l Colloquium Information Systems Security Education, 2001.
[080101333] R. Anderson , Security Engineering: A Guide to Building Dependable Distributed Systems, 2001.
[080101334] A.I. Antón and J.B. Earp , “Strategies for Developing Policies and Requirements for Secure E-Commerce Systems,” E-Commerce Security and Privacy, vol. 2, Advances In Information Security, A.K. Ghosh, eds., pp. 29-46, Kluwer Academic, 2001.
[080101335] A. Avizienis , J.-C. Laprie , B. Randell , and C. Landwehr , “Basic Concepts and Taxonomy of Dependable and Secure Computing,” IEEE Trans. Dependable and Secure Computing, vol. 1, no. 1, pp. 11-33, Jan.-Mar. 2004.
[080101336] T.D. Breaux , M.W. Vail , and A.I. Antón , “Towards Regulatory Compliance: Extracting Rights and Obligations to Align Requirements with Regulations,” Proc. 14th IEEE Int'l Requirements Eng. Conf., pp. 46-55, 2006.
[080101337] D.F.C. Brewer and M.J. Nash , “The Chinese Wall Security Policy,” Proc. 1989 IEEE Symp. Security and Privacy, pp. 206- 214, 1989.
[080101338] S.J. Buckingham Shum , “The Roots of Computer Supported Argument Visualization,” Visualizing Argumentation: Software Tools for Collaborative and Educational Sense-Making, P.A. Kirschner, S.J. Buckingham Shum, and C.S. Carr, eds., pp. 3-24, Springer-Verlag, 2003.
[080101339] J.E. Burge and D.C. Brown , “An Integrated Approach for Software Design Checking Using Design Rationale,” Proc. First Int'l Conf. Design Computing and Cognition, J.S. Gero, ed., pp. 557-576, 2004.
[0801013310] S. Capkun and J.-P. Hubaux , “Securing Position and Distance Verification in Wireless Networks,” Technical Report EPFL/IC/200443, Swiss Federal Inst. of Technology Lausanne, May 2004.
[0801013311] “Australian Technical Standard Order: Airborne Stand-Alone Extended Squitter, Automatic Dependent Surveillance-Broadcast (ADS-B), Transmit Only Equipment,” Australian Civil Aviation Safety Authority, Standard ATSO-C1005, CASA, Dec. 2004.
[0801013312] “CERT/CC Statistics 1988-2005,” Pittsburgh, CERT CC, http://www.cert.org/statscert_stats.html , Feb. 2006.
[0801013313] F. Cervo , “Airborne Separation Assistance Systems,” EUROCONTROL, 2005, Newsletter, http://www.eurocontrol.int/mil/public / standard_pagenewsletter0605art2.html , Sept. 2006.
[0801013314] H. Chivers and M. Fletcher , “Applying Security Design Analysis to a Service-Based System,” Software: Practice and Experience, vol. 35, no. 9, pp. 873-897, 2005.
[0801013315] L. Chung , B. Nixon , E. Yu , and J. Mylopoulos , Non-Functional Requirements in Software Engineering. Kluwer Academic, 2000.
[0801013316] Common Criteria Sponsoring Organizations, “Common Criteria for Information Technology Security Evaluation Part 1: Introduction and General Model, Version 3.1 Rev 1,” Nat'l Inst. of Standards and Technology CCMB-2006-09-001, Sept. 2006.
[0801013317] Common Criteria Sponsoring Organizations, “Common Criteria for Information Technology Security Evaluation Part 2: Security Functional Components, Version 3.1 Rev 1,” Nat'l Inst. of Standards and Technology CCMB-2006-09-002, Sept. 2006.
[0801013318] Common Criteria Sponsoring Organizations, “Common Criteria for Information Technology Security Evaluation Part 3: Security Assurance Components, Version 3.1 Rev 1,” Nat'l Inst. Standards and Technology CCMB-2006-09-003, Sept. 2006.
[0801013319] “Compendium,” http:/www.compendiuminstitute.org/, Compendium Inst., 2005.
[0801013320] J. Conklin , “Dialog Mapping: Reflections on an Industrial Strength Case Study,” Visualizing Argumentation: Software Tools for Collaborative and Educational Sense-Making, P.A. Kirschner, S.J. Buckingham Shum, and C.S. Carr, eds., pp. 117-136, Springer-Verlag, 2003.
[0801013321] E. Dash , “Weakness in the Data Chain,” New York Times, 2005.
[0801013322] R. De Landtsheer and A. van Lamsweerde , “Reasoning About Confidentiality at Requirements Engineering Time,” Proc. 10th European Software Eng. Conf. (ESEC-FSE'05) with 13th ACM SIGSOFT Int'l Symp. Foundations of Software Eng., pp. 41-49, 2005.
[0801013323] P. Devanbu and S. Stubblebine , “Software Engineering for Security: A Roadmap,” The Future of Software Eng., A. Finkelstein, ed., ACM Press, 2000.
[0801013324] “Matter of CardSystems Solutions Inc.,” Washington, D.C., Federal Trade Commission, 2006.
[0801013325] A. Finkelstein and H. Fuks , “Multiparty Specification,” Proc. Fifth Int'l Workshop Software Specification and Design, pp. 185-195, 1989.
[0801013326] D.G. Firesmith , “Common Concepts Underlying Safety, Security, and Survivability Engineering,” Technical Report CMU/SEI-2003-TN-033, Software Eng. Inst., Carnegie Mellon Univ., Dec. 2003.
[0801013327] D.G. Firesmith , “Specifying Reusable Security Requirements,” J. Object Technology, vol. 3, no. 1, pp. 61-75, Jan.-Feb. 2004.
[0801013328] G. Fischer , A.C. Lemke , R. McCall , and A. Morch , “Making Argumentation Serve Design,” Design Rationale Concepts, Techniques, and Use, T. Moran and J. Carroll, eds., pp. 267-293, Lawrence Erlbaum and Assoc., 1996.
[0801013329] P. Giorgini , F. Massacci , J. Mylopoulos , and N. Zannone , “Modeling Security Requirements through Ownership, Permission and Delegation,” Proc. 13th IEEE Int'l Conf. Requirements Eng., pp. 167-176, 2005.
[0801013330] M. Glinz , “Rethinking the Notion of Non-Functional Requirements,” Proc. Third World Congress for Software Quality, vol. II, pp. 55-64, 2005.
[0801013331] C.B. Haley , R.C. Laney , and B. Nuseibeh , “Deriving Security Requirements from Crosscutting Threat Descriptions,” Proc. Third Int'l Conf. Aspect-Oriented Software Development, pp. 112-121, 2004.
[0801013332] C.B. Haley , R.C. Laney , J.D. Moffett , and B. Nuseibeh , “The Effect of Trust Assumptions on the Elaboration of Security Requirements,” Proc. 12th Int'l Requirements Eng. Conf., pp. 102-111, 2004.
[0801013333] C.B. Haley , J.D. Moffett , R. Laney , and B. Nuseibeh , “Arguing Security: Validating Security Requirements Using Structured Argumentation,” Proc. Third Symp. Requirements Eng. for Information Security with the 13th Int'l Requirements Eng. Conf., 2005.
[0801013334] C.B. Haley , R.C. Laney , J.D. Moffett , and B. Nuseibeh , “Arguing Satisfaction of Security Requirements,” Integrating Security and Software Eng.: Advances and Future Vision, H. Mouratidis and P. Giorgini, eds., pp. 16-43, Idea Group, 2006.
[0801013335] C.B. Haley , J.D. Moffett , R. Laney , and B. Nuseibeh , “A Framework for Security Requirements Engineering,” Proc. 2006 Software Eng. for Secure Systems Workshop with the 28th Int'l Conf. Software Eng., pp. 35-41, 2006.
[0801013336] C.B. Haley , R.C. Laney , J.D. Moffett , and B. Nuseibeh , “Using Trust Assumptions with Security Requirements,” Requirements Eng. J., vol. 11, no. 2, pp. 138-151, Apr. 2006.
[0801013337] C.L. Heitmeyer , “Applying “Practical” Formal Methods to the Specification and Analysis of Security Properties,” Proc. Int'l Workshop Information Assurance in Computer Networks: Methods, Models, and Architectures for Network Computer Security, pp. 84-89, 2001.
[0801013338] ISO/IEC, “Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 1: Introduction and General Model,” ISO/IEC, Geneva, Switzerland, Int'l Standard 15408-1, Dec. 1999.
[0801013339] ISO/IEC, “Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 2: Security Functional Requirements,” ISO/IEC, Geneva, Switzerland, Int'l Standard 15408-2, Dec. 1999.
[0801013340] ISO/IEC, “Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 3: Security Assurance Requirements,” ISO/IEC, Geneva, Switzerland, Int'l Standard 15408-3, Dec. 1999.
[0801013341] M. Jackson , Software Requirements and Specifications. Addison Wesley, 1995.
[0801013342] M. Jackson , Problem Frames. Addison Wesley, 2001.
[0801013343] E. Jonsson , “An Integrated Framework for Security and Dependability,” Proc. 1998 Workshop New Security Paradigms, pp. 22-29, 1998.
[0801013344] E. Kavakli , “Goal-Oriented Requirements Engineering: A Unifying Framework,” Requirements Eng. J., vol. 6, no. 4, pp. 237-251, Jan. 2002.
[0801013345] T.P. Kelly , “Arguing Safety—A Systematic Approach to Safety Case Management,” D.Phil dissertation, Univ. of York, 1999.
[0801013346] G. Kotonya and I. Sommerville , Requirements Engineering: Processes and Techniques. John Wiley and Sons, 1998.
[0801013347] A. van Lamsweerde , “Goal-Oriented Requirements Engineering: A Guided Tour,” Proc. Fifth IEEE Int'l Symp. Requirements Eng., pp. 249-263, 2001.
[0801013348] A. van Lamsweerde , “Elaborating Security Requirements by Construction of Intentional Anti-Models,” Proc.e 26th Int'l Conf. Software Eng., pp. 148-157, 2004.
[0801013349] S. Lautieri , D. Cooper , and D. Jackson , “SafSec: Commonalities Between Safety and Security Assurance,” Constituents of Modern System-Safety Thinking: Proc. 13th Safety-Critical Systems Symp., F. Redmill and T. Anderson, eds., pp. 65-78, 2005.
[0801013350] J. Lee and K.-Y. Lai , “What's in Design Rationale?” Human-Computer Interaction, vol. 6, nos. 3-4, pp. 251-280, 1991.
[0801013351] Y. Lee , J. Lee , and Z. Lee , “Integrating Software Lifecycle Process Standards with Security Engineering,” Computers and Security, vol. 21, no. 4, pp. 345-355, 2002.
[0801013352] N.G. Leveson , “Software Safety: Why, What, and How,” ACM Computing Surveys, vol. 18, no. 2, pp. 125-163, June 1986.
[0801013353] L. Liu , E. Yu , and J. Mylopoulos , “Security and Privacy Requirements Analysis within a Social Setting,” Proc. 11th IEEE Int'l Requirements Eng. Conf., pp. 151-161, 2003.
[0801013354] J. McDermott and C. Fox , “Using Abuse Case Models for Security Requirements Analysis,” Proc. 15th Computer Security Applications Conf., pp. 55-64, 1999.
[0801013355] N.R. Mead , E.D. Hough , and T.R. Stehney II , “Security Quality Requirements Engineering (SQUARE) Methodology,” CMU/SEI, Technical Report CMU/SEI-2005-TR-009, ESC-TR-2005-009, Nov. 2005.
[0801013356] J.D. Moffett , J.G. Hall , A. Coombes , and J.A. McDermid , “A Model for a Causal Logic for Requirements Engineering,” Requirements Eng., vol. 1, no. 1, pp. 27-46, Mar. 1996.
[0801013357] J.D. Moffett , C.B. Haley , and B. Nuseibeh , “Core Security Requirements Artefacts,” Technical Report 2004/23, Dept. of Computing, The Open Univ., June 2004.
[0801013358] H. Mouratidis , P. Giorgini , and G. Manson , “Integrating Security and Systems Engineering: Towards the Modelling of Secure Information Systems,” Proc. 15th Conf. Advanced Information Systems Eng., pp. 63-78, 2003.
[0801013359] J. Mylopoulos , A. Borgida , M. Jarke , and M. Koubarakis , “Telos: Representing Knowledge about Information Systems,” ACM Trans. Information Systems, vol. 8, no. 4, pp. 325-362, Oct. 1990.
[0801013360] J. Mylopoulos , L. Chung , and B. Nixon , “Representing and Using Nonfunctional Requirements: A Process-Oriented Approach,” IEEE Trans. Software Eng., vol. 18, no. 6, pp. 483-497, June 1992.
[0801013361] S.E. Newman and C.C. Marshall , “Pushing Toulmin Too Far: Learning from an Argument Representation Scheme,” Technical Report SSL-92-45, Xerox PARC, 1991.
[0801013362] NIST, An Introduction to Computer Security: The NIST Handbook, Nat'l Inst. of Standards and Technology (NIST), special publication SP 800-12, Oct. 1995.
[0801013363] B. Nuseibeh , “Weaving Together Requirements and Architectures,” Computer, vol. 34, no. 3, pp. 115-117, Mar. 2001.
[0801013364] C.P. Pfleeger and S.L. Pfleeger , Security in Computing. Prentice Hall, 2002.
[0801013365] C. Potts and G. Bruns , “Recording the Reasons for Design Decisions,” Proc. 10th Int'l Conf. Software Eng., pp. 418-427, 1988.
[0801013366] B. Ramesh and V. Dhar , “Supporting Systems Development by Capturing Deliberations during Requirements Engineering,” IEEE Trans. Software Eng., vol. 18, no. 6, pp. 498-510, June 1992.
[0801013367] “Software Assurance: A Guide to the Common Body of Knowledge to Produce, Acquire, and Sustain Secure Software,” version 1.05.245, S.T. Redwine Jr., ed., Dept. of Homeland Security, Aug. 2006.
[0801013368] J. Rushby , “Security Requirements Specifications: How and What,” Proc. Symp. Requirements Eng. for Information Security, 2001.
[0801013369] Senior Officials Group-Information Systems Security, “Information Technology Security Evaluation Criteria (ITSEC),” version 1.2, Dept. of Trade and Industry, June 1991.
[0801013370] G. Sindre and A.L. Opdahl , “Eliciting Security Requirements by Misuse Cases,” Proc. 37th Int'l Conf. Technology of Object-Oriented Languages and Systems, pp. 120-131, 2000.
[0801013371] E.H. Spafford , “The Internet Worm Program: An Analysis,” ACM SIGCOMM Computer Comm. Rev., vol. 19, no. 1, pp. 17-57, Jan. 1989.
[0801013372] “The Chaos Report,” research report, Standish Group, 1995.
[0801013373] “Chaos: A Recipe for Success,” research report, Standish Group, 1999.
[0801013374] “Extreme Chaos,” research report, Standish Group, 2001.
[0801013375] O. Tettero , D.J. Out , H.M. Franken , and J. Schot , “Information Security Embedded in the Design of Telematics Systems,” Computers and Security, vol. 16, no. 2, pp. 145-164, 1997.
[0801013376] K. Thompson , “Reflections on Trusting Trust,” Comm. ACM, vol. 27, no. 8, pp. 761-763, Aug. 1984.
[0801013377] S.E. Toulmin , The Uses of Argument. Cambridge Univ. Press, 1958.
[0801013378] S.E. Toulmin , R.D. Rieke , and A. Janik , An Introduction to Reasoning. Macmillan, 1979.
[0801013379] J. Viega , T. Kohno , and B. Potter , “Trust (and Mistrust) in Secure Applications,” Comm. ACM, vol. 44, no. 2, pp. 31-36, Feb. 2001.
[0801013380] J. Viega and G. McGraw , Building Secure Software: How to Avoid Security Problems the Right Way. Addison Wesley, 2002.
[0801013381] M. Watson , UK ADS-B in a Radar Environment, EUROCONTROL, 2006, presentation slides, http://www.eurocontrol.int/cascade/ gallery/content/public/documents/Presentations/ Session %202%20-%20Trials%20and%20Implementations Watson%20-%20UK%20ADS-B%20in%20a%20radar%20environment.pdf , 2007.
[0801013382] L. Zhuang , F. Zhou , and J.D. Tygar , “Keyboard Acoustic Emanations Revisited,” Proc. 12th ACM Conf. Computer and Comm. Security, pp. 373-382, 2005.

Citation:

Jeff Kramer, "State of the Journal Address," IEEE Transactions on Software Engineering, vol. 34, no. 1, pp. 1-2, Jan. 2008, doi:10.1109/TSE.2008.12

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.