{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,25]],"date-time":"2025-06-25T04:11:11Z","timestamp":1750824671975,"version":"3.41.0"},"publisher-location":"Cham","reference-count":43,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319644820"},{"type":"electronic","value":"9783319644837"}],"license":[{"start":{"date-parts":[[2017,1,1]],"date-time":"2017-01-01T00:00:00Z","timestamp":1483228800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2017]]},"DOI":"10.1007\/978-3-319-64483-7_7","type":"book-chapter","created":{"date-parts":[[2017,7,26]],"date-time":"2017-07-26T17:19:07Z","timestamp":1501089547000},"page":"99-114","source":"Crossref","is-referenced-by-count":4,"title":["Selecting Security Mechanisms in Secure Tropos"],"prefix":"10.1007","author":[{"given":"Michalis","family":"Pavlidis","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haralambos","family":"Mouratidis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Emmanouil","family":"Panaousis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Nikolaos","family":"Argyropoulos","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2017,7,27]]},"reference":[{"key":"7_CR1","doi-asserted-by":"crossref","unstructured":"McDermott, J., Fox, C.: Using abuse case models for security requirements analysis. In: 15th Annual Computer Security Applications Conference, (ACSAC 1999) Proceedings, pp. 55\u201364. IEEE (1999)","DOI":"10.1109\/CSAC.1999.816013"},{"key":"7_CR2","doi-asserted-by":"crossref","unstructured":"Basin, D., Doser, J., Lodderstedt, T.: Model driven security for process-oriented systems. In: Proceedings of the Eighth ACM Symposium on Access Control Models and Technologies, pp. 100\u2013109. ACM (2003)","DOI":"10.1145\/775412.775425"},{"key":"7_CR3","volume-title":"Integrating Security and Software Engineering: Advances and Future Visions: Advances and Future Visions","author":"H Mouratidis","year":"2006","unstructured":"Mouratidis, H.: Integrating Security and Software Engineering: Advances and Future Visions: Advances and Future Visions. IGI Global, Hershey (2006)"},{"key":"7_CR4","doi-asserted-by":"crossref","unstructured":"Haley, C.B., Laney, R., Moffett, J.D., Nuseibeh, B.: Arguing satisfaction of security requirements. Integr. Secur. Softw. Eng. Adv. Future Vis. 16\u201343 (2006)","DOI":"10.4018\/978-1-59904-147-6.ch002"},{"issue":"1","key":"7_CR5","doi-asserted-by":"crossref","first-page":"7","DOI":"10.1007\/s00766-009-0092-x","volume":"15","author":"B Fabian","year":"2010","unstructured":"Fabian, B., G\u00fcrses, S., Heisel, M., Santen, T., Schmidt, H.: A comparison of security requirements engineering methods. Requir. Eng. 15(1), 7\u201340 (2010)","journal-title":"Requir. Eng."},{"issue":"1","key":"7_CR6","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s00766-009-0094-8","volume":"15","author":"E Dubois","year":"2010","unstructured":"Dubois, E., Mouratidis, H.: Guest editorial: security requirements engineering: past, present and future. Requir. Eng. 15(1), 1\u20135 (2010)","journal-title":"Requir. Eng."},{"issue":"2","key":"7_CR7","doi-asserted-by":"crossref","first-page":"285","DOI":"10.1142\/S0218194007003240","volume":"17","author":"H Mouratidis","year":"2007","unstructured":"Mouratidis, H., Giorgini, P.: Secure tropos: a security-oriented extension of the tropos methodology. Int. J. Softw. Eng. Knowl. Eng. 17(2), 285\u2013309 (2007)","journal-title":"Int. J. Softw. Eng. Knowl. Eng."},{"key":"7_CR8","series-title":"International Series in Software Engineering","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4615-5269-7","volume-title":"Non-Functional Requirements in Software Engineering","author":"L Chung","year":"2000","unstructured":"Chung, L., Nixon, B., Yu, E., Mylopoulos, J.: Non-Functional Requirements in Software Engineering. International Series in Software Engineering. Springer, Heidelberg (2000). doi: 10.1007\/978-1-4615-5269-7"},{"key":"7_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"390","DOI":"10.1007\/11563228_30","volume-title":"Computer Safety, Reliability, and Security","author":"D Hatebur","year":"2005","unstructured":"Hatebur, D., Heisel, M.: Problem frames and architectures for security problems. In: Winther, R., Gran, B.A., Dahll, G. (eds.) SAFECOMP 2005. LNCS, vol. 3688, pp. 390\u2013404. Springer, Heidelberg (2005). doi: 10.1007\/11563228_30"},{"key":"7_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"238","DOI":"10.1007\/11766155_17","volume-title":"Emerging Trends in Information and Communication Security","author":"D Hatebur","year":"2006","unstructured":"Hatebur, D., Heisel, M., Schmidt, H.: Security Engineering Using Problem Frames. In: M\u00fcller, G. (ed.) ETRICS 2006. LNCS, vol. 3995, pp. 238\u2013253. Springer, Heidelberg (2006). doi: 10.1007\/11766155_17"},{"issue":"3","key":"7_CR11","doi-asserted-by":"crossref","first-page":"592","DOI":"10.1016\/j.dss.2004.06.004","volume":"41","author":"M Gupta","year":"2006","unstructured":"Gupta, M., Rees, J., Chaturvedi, A., Chi, J.: Matching information security vulnerabilities to organizational security profiles: a genetic algorithm approach. Decis. Support Syst. 41(3), 592\u2013603 (2006)","journal-title":"Decis. Support Syst."},{"key":"7_CR12","doi-asserted-by":"crossref","unstructured":"Neubauer, T., Pehn, M.: Workshop-based risk assessment for the definition of secure business processes. In: Second International Conference on Information, Process, and Knowledge Management, eKNOW 2010, pp. 74\u201379. IEEE (2010)","DOI":"10.1109\/eKNOW.2010.8"},{"issue":"3","key":"7_CR13","doi-asserted-by":"crossref","first-page":"599","DOI":"10.1016\/j.dss.2012.04.001","volume":"53","author":"V Viduto","year":"2012","unstructured":"Viduto, V., Maple, C., Huang, W., L\u00f3pez-Per\u00e9z, D.: A novel risk assessment and optimisation model for a multi-objective network security countermeasure selection problem. Decis. Support Syst. 53(3), 599\u2013610 (2012)","journal-title":"Decis. Support Syst."},{"issue":"1","key":"7_CR14","doi-asserted-by":"crossref","first-page":"156","DOI":"10.1016\/j.dss.2013.01.001","volume":"55","author":"T Sawik","year":"2013","unstructured":"Sawik, T.: Selection of optimal countermeasure portfolio in it security planning. Decis. Support Syst. 55(1), 156\u2013164 (2013)","journal-title":"Decis. Support Syst."},{"key":"7_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-39733-5_1","volume-title":"Journal on Data Semantics I","author":"P Giorgini","year":"2003","unstructured":"Giorgini, P., Mylopoulos, J., Nicchiarelli, E., Sebastiani, R.: Formal Reasoning Techniques for Goal Models. In: Spaccapietra, S., March, S., Aberer, K. (eds.) Journal on Data Semantics I. LNCS, vol. 2800, pp. 1\u201320. Springer, Heidelberg (2003). doi: 10.1007\/978-3-540-39733-5_1"},{"issue":"8","key":"7_CR16","doi-asserted-by":"crossref","first-page":"841","DOI":"10.1002\/int.20433","volume":"25","author":"D Amyot","year":"2010","unstructured":"Amyot, D., Ghanavati, S., Horkoff, J., Mussbacher, G., Peyton, L., Yu, E.: Evaluating goal models within the goal-oriented requirement language. Int. J. Intell. Syst. 25(8), 841\u2013877 (2010)","journal-title":"Int. J. Intell. Syst."},{"key":"7_CR17","doi-asserted-by":"crossref","unstructured":"Letier, E., Van Lamsweerde, A.: Reasoning about partial goal satisfaction for requirements and design engineering. In: ACM SIGSOFT Software Engineering Notes, vol. 29, pp. 53\u201362. ACM (2004)","DOI":"10.1145\/1029894.1029905"},{"key":"7_CR18","doi-asserted-by":"crossref","unstructured":"Bryl, V., Giorgini, P., Mylopoulos, J.: Designing cooperative is: exploring and evaluating alternatives. In: On the Move to Meaningful Internet Systems 2006: CoopIS, DOA, GADA, and ODBASE, pp. 533\u2013550. Springer, Heidelberg (2006)","DOI":"10.1007\/11914853_32"},{"key":"7_CR19","doi-asserted-by":"crossref","unstructured":"Kaiya, H., Horai, H., Saeki, M.: Agora: attributed goal-oriented requirements analysis method. In: IEEE Joint International Conference on Requirements Engineering, Proceedings, pp. 13\u201322. IEEE (2002)","DOI":"10.1109\/ICRE.2002.1048501"},{"key":"7_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"221","DOI":"10.1007\/978-3-642-37422-7_16","volume-title":"Requirements Engineering: Foundation for Software Quality","author":"N Bencomo","year":"2013","unstructured":"Bencomo, N., Belaggoun, A.: Supporting decision-making for self-adaptive systems: from goal models to dynamic decision networks. In: Doerr, J., Opdahl, A.L. (eds.) REFSQ 2013. LNCS, vol. 7830, pp. 221\u2013236. Springer, Heidelberg (2013). doi: 10.1007\/978-3-642-37422-7_16"},{"issue":"2","key":"7_CR21","doi-asserted-by":"crossref","first-page":"49","DOI":"10.1109\/MS.2008.29","volume":"25","author":"MS Feather","year":"2008","unstructured":"Feather, M.S., Cornford, S.L., Hicks, K., Kiper, J.D., Menzies, T., et al.: A broad, quantitative model for making early requirements decisions. Software 25(2), 49\u201356 (2008). IEEE","journal-title":"Software"},{"key":"7_CR22","doi-asserted-by":"crossref","unstructured":"Heaven, W., Letier, E.: Simulating and optimising design decisions in quantitative goal models. In: 2011 19th IEEE International Requirements Engineering Conference (RE), pp. 79\u201388. IEEE (2011)","DOI":"10.1109\/RE.2011.6051653"},{"issue":"2","key":"7_CR23","doi-asserted-by":"crossref","first-page":"244","DOI":"10.1016\/j.csi.2006.04.002","volume":"29","author":"D Mellado","year":"2007","unstructured":"Mellado, D., Fern\u00e1ndez-Medina, E., Piattini, M.: A common criteria based security requirements engineering process for the development of secure information systems. Comput. Stan. Interfaces 29(2), 244\u2013253 (2007)","journal-title":"Comput. Stan. Interfaces"},{"issue":"4","key":"7_CR24","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/1082983.1083214","volume":"30","author":"NR Mead","year":"2005","unstructured":"Mead, N.R., Stehney, T.: Security quality requirements engineering (square) methodology. SIGSOFT Softw. Eng. Notes 30(4), 1\u20137 (2005)","journal-title":"SIGSOFT Softw. Eng. Notes"},{"issue":"1","key":"7_CR25","doi-asserted-by":"crossref","first-page":"34","DOI":"10.1007\/s00766-004-0194-4","volume":"10","author":"G Sindre","year":"2005","unstructured":"Sindre, G., Opdahl, A.L.: Eliciting security requirements with misuse cases. Requir. Eng. 10(1), 34\u201344 (2005). http:\/\/dx.doi.org\/10.1007\/s00766-004-0194-4","journal-title":"Requir. Eng."},{"key":"7_CR26","doi-asserted-by":"crossref","unstructured":"Liu, L., Yu, E., Mylopoulos, J.: Security and privacy requirements analysis within a social setting. In: 11th IEEE International Requirements Engineering Conference, Proceedings, pp. 151\u2013161 (2003)","DOI":"10.1109\/ICRE.2003.1232746"},{"key":"7_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"270","DOI":"10.1007\/978-3-642-41924-9_23","volume-title":"Conceptual Modeling","author":"E Paja","year":"2013","unstructured":"Paja, E., Dalpiaz, F., Giorgini, P.: Managing security requirements conflicts in socio-technical systems. In: Ng, W., Storey, V.C., Trujillo, J.C. (eds.) ER 2013. LNCS, vol. 8217, pp. 270\u2013283. Springer, Heidelberg (2013). doi: 10.1007\/978-3-642-41924-9_23"},{"key":"7_CR28","doi-asserted-by":"crossref","unstructured":"Van Lamsweerde, A.: Elaborating security requirements by construction of intentional anti-models. In: Proceedings of the 26th International Conference on Software Engineering, pp. 148\u2013157. IEEE Computer Society (2004)","DOI":"10.1109\/ICSE.2004.1317437"},{"key":"7_CR29","doi-asserted-by":"crossref","unstructured":"Franqueira, V.N., Tun, T.T., Yu, Y., Wieringa, R., Nuseibeh, B.: Risk and argument: a risk-based argumentation method for practical security. In: 2011 19th IEEE International Requirements Engineering Conference (RE), pp. 239\u2013248. IEEE (2011)","DOI":"10.1109\/RE.2011.6051659"},{"issue":"2","key":"7_CR30","doi-asserted-by":"crossref","first-page":"101","DOI":"10.1007\/s00766-010-0112-x","volume":"16","author":"Y Asnar","year":"2011","unstructured":"Asnar, Y., Giorgini, P., Mylopoulos, J.: Goal-driven risk assessment in requirements engineering. Requir. Eng. 16(2), 101\u2013116 (2011)","journal-title":"Requir. Eng."},{"key":"7_CR31","doi-asserted-by":"crossref","unstructured":"Lee, S.W.: Probabilistic risk assessment for security requirements: a preliminary study. In: 2011 Fifth International Conference on Secure Software Integration and Reliability Improvement (SSIRI), pp. 11\u201320. IEEE (2011)","DOI":"10.1109\/SSIRI.2011.12"},{"key":"7_CR32","doi-asserted-by":"crossref","unstructured":"Houmb, S.H., Georg, G., J\u00fcrjens, J., France, R.: An integrated security verification and security solution design trade-off analysis approach. Integrating Security and Software Engineering: Advances and Future Visions\/Mouratidis, Haralambos pp. 190\u2013219 (2007)","DOI":"10.4018\/978-1-59904-147-6.ch009"},{"key":"7_CR33","doi-asserted-by":"crossref","unstructured":"Tsigkanos, C., Pasquale, L., Menghi, C., Ghezzi, C., Nuseibeh, B.: Engineering topology aware adaptive security: Preventing requirements violations at runtime. In: 2014 IEEE 22nd International Requirements Engineering Conference (RE), pp. 203\u2013212. IEEE (2014)","DOI":"10.1109\/RE.2014.6912262"},{"key":"7_CR34","doi-asserted-by":"crossref","unstructured":"Van Lamsweerde, A.: Goal-oriented requirements engineering: a guided tour. In: Fifth IEEE International Symposium on Requirements Engineering, Proceedings, pp. 249\u2013262. IEEE (2001)","DOI":"10.1109\/ISRE.2001.948567"},{"issue":"3","key":"7_CR35","doi-asserted-by":"crossref","first-page":"203","DOI":"10.1023\/B:AGNT.0000018806.20944.ef","volume":"8","author":"P Bresciani","year":"2004","unstructured":"Bresciani, P., Perini, A., Giorgini, P., Giunchiglia, F., Mylopoulos, J.: Tropos: An agent-oriented software development methodology. Auton. Agent. Multi-Agent Syst. 8(3), 203\u2013236 (2004)","journal-title":"Auton. Agent. Multi-Agent Syst."},{"key":"7_CR36","volume-title":"Requirements Engineering: Processes and Techniques","author":"I Sommerville","year":"1998","unstructured":"Sommerville, I., Kotonya, G.: Requirements Engineering: Processes and Techniques. Wiley, Hoboken (1998)"},{"issue":"1","key":"7_CR37","doi-asserted-by":"crossref","first-page":"133","DOI":"10.1109\/TSE.2007.70754","volume":"34","author":"CB Haley","year":"2008","unstructured":"Haley, C.B., Laney, R., Moffett, J.D., Nuseibeh, B.: Security requirements engineering: a framework for representation and analysis. IEEE Trans. Softw. Eng. 34(1), 133\u2013153 (2008)","journal-title":"IEEE Trans. Softw. Eng."},{"issue":"5","key":"7_CR38","doi-asserted-by":"crossref","first-page":"328","DOI":"10.1109\/TSE.2004.10","volume":"30","author":"LM Cysneiros","year":"2004","unstructured":"Cysneiros, L.M., Sampaio do Prado Leite, J.C.: Nonfunctional requirements: from elicitation to conceptual models. IEEE Trans. Softw. Eng. 30(5), 328\u2013350 (2004)","journal-title":"IEEE Trans. Softw. Eng."},{"key":"7_CR39","unstructured":"Sebastiani, R., Trentin, P.: Optimathsat: a tool for optimization modulo theories"},{"key":"7_CR40","unstructured":"Greek-Parliament: Act 3892: Electronic registration and fulfilment of medical prescriptions and clinical test referrals. FEK 189(1), 4225\u20134232 (2010)"},{"key":"7_CR41","unstructured":"Sfyroeras, V.: The electronic prescription system. Pharmacy management and communications, pp. 68\u201369, September 2012. http:\/\/www.idika.gr\/files\/synenteyxeis\/arthro_pharmacy_management_09.12.pdf"},{"key":"7_CR42","unstructured":"Adoxx Meta-modeling platform. http:\/\/www.adoxx.org"},{"key":"7_CR43","doi-asserted-by":"crossref","unstructured":"Bonneau, J., Herley, C., van Oorschot, P.C., Stajano, F.: The quest to replace passwords: a framework for comparative evaluation of web authentication schemes. In: Proceedings of the 33rd IEEE Symposium on Security and Privacy. San Francisco, CA, USA, May 2012","DOI":"10.1109\/SP.2012.44"}],"container-title":["Lecture Notes in Computer Science","Trust, Privacy and Security in Digital Business"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-64483-7_7","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,24]],"date-time":"2025-06-24T18:12:32Z","timestamp":1750788752000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-64483-7_7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2017]]},"ISBN":["9783319644820","9783319644837"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-64483-7_7","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2017]]}}}