Although the concepts of security and trust play an important issue in the development of information systems, they have been mainly neglected by software engineering methodologies. In this chapter we present an approach that considers security and trust throughout the software development process. Our approach integrates two prominent software engineering approaches, one that provides a securityoriented process and one that provides a trust management process. The result is the development of a methodology that considers security and trust issues as part of its development process. Such integration represents an advance over the current state of the art by providing the first effort to consider security and trust issues under a single software engineering methodology. A case study from the health domain is employed to illustrate our approach.
|Title of host publication||Integrating Security and Software Engineering: Advances and Future Vision|
|Editors||H. Mouratidis, P. Giorgini|
|Publication status||Published - 2006|