Evaluating the effectiveness of the security quality requirements engineering (SQUARE) method: A case study using smart grid advanced metering infrastructure

Husam Suleiman; Davor Svetinovic

doi:10.1007/s00766-012-0153-4

Evaluating the effectiveness of the security quality requirements engineering (SQUARE) method: A case study using smart grid advanced metering infrastructure

Husam Suleiman, Davor Svetinovic

Electrical Engineering

Research output: Contribution to journal › Article › peer-review

36 Scopus citations

Abstract

This paper presents an evaluation of the security quality requirements engineering (SQUARE) method. The evaluation of SQUARE was conducted by its application on the advanced metering infrastructure of smart grid as a case study. We evaluated the effectiveness of SQUARE with respect to its ability to elicit a set of artifacts, threats, and vulnerabilities; to perform likelihood, impact analysis, and risk level determination; and to elicit, categorize, and prioritize the security requirements. The main contribution of this work is the evaluation of the effectiveness of SQUARE using qualitative security requirements engineering method evaluation criteria.

Original language	British English
Pages (from-to)	251-279
Number of pages	29
Journal	Requirements Engineering
Volume	18
Issue number	3
DOIs	https://doi.org/10.1007/s00766-012-0153-4
State	Published - Sep 2013

Keywords

Advanced metering infrastructure (AMI) security
Qualitative research evaluation
Security quality requirements engineering (SQUARE) method
Security requirements engineering method evaluation
Smart grid security

Access to Document

10.1007/s00766-012-0153-4

Cite this

@article{bcc3a7baec30420a820a465d02169e78,

title = "Evaluating the effectiveness of the security quality requirements engineering (SQUARE) method: A case study using smart grid advanced metering infrastructure",

abstract = "This paper presents an evaluation of the security quality requirements engineering (SQUARE) method. The evaluation of SQUARE was conducted by its application on the advanced metering infrastructure of smart grid as a case study. We evaluated the effectiveness of SQUARE with respect to its ability to elicit a set of artifacts, threats, and vulnerabilities; to perform likelihood, impact analysis, and risk level determination; and to elicit, categorize, and prioritize the security requirements. The main contribution of this work is the evaluation of the effectiveness of SQUARE using qualitative security requirements engineering method evaluation criteria.",

keywords = "Advanced metering infrastructure (AMI) security, Qualitative research evaluation, Security quality requirements engineering (SQUARE) method, Security requirements engineering method evaluation, Smart grid security",

author = "Husam Suleiman and Davor Svetinovic",

year = "2013",

month = sep,

doi = "10.1007/s00766-012-0153-4",

language = "British English",

volume = "18",

pages = "251--279",

journal = "Requirements Engineering",

issn = "0947-3602",

publisher = "Springer London",

number = "3",

}

TY - JOUR

T1 - Evaluating the effectiveness of the security quality requirements engineering (SQUARE) method

T2 - A case study using smart grid advanced metering infrastructure

AU - Suleiman, Husam

AU - Svetinovic, Davor

PY - 2013/9

Y1 - 2013/9

N2 - This paper presents an evaluation of the security quality requirements engineering (SQUARE) method. The evaluation of SQUARE was conducted by its application on the advanced metering infrastructure of smart grid as a case study. We evaluated the effectiveness of SQUARE with respect to its ability to elicit a set of artifacts, threats, and vulnerabilities; to perform likelihood, impact analysis, and risk level determination; and to elicit, categorize, and prioritize the security requirements. The main contribution of this work is the evaluation of the effectiveness of SQUARE using qualitative security requirements engineering method evaluation criteria.

AB - This paper presents an evaluation of the security quality requirements engineering (SQUARE) method. The evaluation of SQUARE was conducted by its application on the advanced metering infrastructure of smart grid as a case study. We evaluated the effectiveness of SQUARE with respect to its ability to elicit a set of artifacts, threats, and vulnerabilities; to perform likelihood, impact analysis, and risk level determination; and to elicit, categorize, and prioritize the security requirements. The main contribution of this work is the evaluation of the effectiveness of SQUARE using qualitative security requirements engineering method evaluation criteria.

KW - Advanced metering infrastructure (AMI) security

KW - Qualitative research evaluation

KW - Security quality requirements engineering (SQUARE) method

KW - Security requirements engineering method evaluation

KW - Smart grid security

UR - http://www.scopus.com/inward/record.url?scp=84881611525&partnerID=8YFLogxK

U2 - 10.1007/s00766-012-0153-4

DO - 10.1007/s00766-012-0153-4

M3 - Article

AN - SCOPUS:84881611525

SN - 0947-3602

VL - 18

SP - 251

EP - 279

JO - Requirements Engineering

JF - Requirements Engineering

IS - 3

ER -

Evaluating the effectiveness of the security quality requirements engineering (SQUARE) method: A case study using smart grid advanced metering infrastructure

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this