{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,21]],"date-time":"2026-04-21T14:47:15Z","timestamp":1776782835716,"version":"3.51.2"},"publisher-location":"Berlin, Heidelberg","reference-count":37,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540755623","type":"print"},{"value":"9783540755630","type":"electronic"}],"license":[{"start":{"date-parts":[[2007,1,1]],"date-time":"2007-01-01T00:00:00Z","timestamp":1167609600000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2007]]},"DOI":"10.1007\/978-3-540-75563-0_29","type":"book-chapter","created":{"date-parts":[[2007,11,13]],"date-time":"2007-11-13T07:07:07Z","timestamp":1194937627000},"page":"423-437","source":"Crossref","is-referenced-by-count":20,"title":["A Comparison of Two Approaches to Safety Analysis Based on Use Cases"],"prefix":"10.1007","author":[{"given":"Tor","family":"St\u00e5lhane","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guttorm","family":"Sindre","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"29_CR1","first-page":"27","volume":"3","author":"D.G. Firesmith","year":"2004","unstructured":"Firesmith, D.G.: Engineering Safety Requirements, Safety Constraints, and Safety-Critical Requirements. Journal of Object Technology\u00a03, 27\u201342 (2004)","journal-title":"Journal of Object Technology"},{"key":"29_CR2","series-title":"Lecture Notes in Computer Science","volume-title":"Issues in Agent Communication","author":"J. McDermott","year":"2000","unstructured":"McDermott, J., Fox, C.: Using Abuse Case Models for Security Requirements Analysis. In: Dignum, F.P.M., Greaves, M. (eds.) Issues in Agent Communication. LNCS, vol.\u00a01916, Springer, Heidelberg (2000)"},{"key":"29_CR3","first-page":"213","volume-title":"The Future of Software Engineering","author":"R.R. Lutz","year":"2000","unstructured":"Lutz, R.R.: Software Engineering for Safety: A Roadmap. In: Finkelstein, A. (ed.) The Future of Software Engineering, pp. 213\u2013226. ACM Press, New York (2000)"},{"key":"29_CR4","volume-title":"Object-Oriented Software Engineering: A Use Case Driven Approach","author":"I. Jacobson","year":"1992","unstructured":"Jacobson, I., Christerson, M., Jonsson, P., Overgaard, G.: Object-Oriented Software Engineering: A Use Case Driven Approach. Addison-Wesley, Boston (1992)"},{"key":"29_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"544","DOI":"10.1007\/11901181_40","volume-title":"Conceptual Modeling - ER 2006","author":"G. Poels","year":"2006","unstructured":"Poels, G., Burton-Jones, A., Gemino, A., Parsons, J., Ramesh, V.: Experimental Research on Conceptual Modeling: What Should We Be Doing and Why? In: Embley, D.W., Oliv\u00e9, A., Ram, S. (eds.) ER 2006. LNCS, vol.\u00a04215, pp. 544\u2013547. Springer, Heidelberg (2006)"},{"key":"29_CR6","first-page":"228","volume-title":"Fifth IEEE International Symposium on Requirements Engineering (RE\u201901), Toronto, Canada","author":"K. Allenby","year":"2001","unstructured":"Allenby, K., Kelly, T.: Deriving Safety Requirements Using Scenarios. In: Nuseibeh, B., Easterbrook, S. (eds.) Fifth IEEE International Symposium on Requirements Engineering (RE\u201901), Toronto, Canada, pp. 228\u2013235. IEEE Computer Society Press, Los Alamitos (2001)"},{"key":"29_CR7","unstructured":"Guidelines, S.A.E.: Methods for Conducting the Safety Assessment Process on Civil Airborne Systems and Equipment. Society of Automotive Engineers (1996)"},{"key":"29_CR8","doi-asserted-by":"crossref","DOI":"10.1007\/978-1-4471-0823-8","volume-title":"System Safety: HAZOP and Software HAZOP","author":"F. Redmill","year":"1999","unstructured":"Redmill, F., Chudleigh, M., Catmur, J.: System Safety: HAZOP and Software HAZOP. Wiley, Chichester, UK (1999)"},{"key":"29_CR9","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"769","DOI":"10.1007\/11424857_84","volume-title":"Computational Science and Its Applications \u2013 ICCSA 2005","author":"H.-K. Kim","year":"2005","unstructured":"Kim, H.-K., Chung, Y.-K.: Automatic Translation from Requirements Model into Use Cases Modeling on UML. In: Gervasi, O., Gavrilova, M., Kumar, V., Lagan\u00e0, A., Lee, H.P., Mun, Y., Taniar, D., Tan, C.J.K. (eds.) ICCSA 2005. LNCS, vol.\u00a03482, pp. 769\u2013777. Springer, Heidelberg (2005)"},{"key":"29_CR10","doi-asserted-by":"publisher","first-page":"38","DOI":"10.1049\/ess:20040207","volume":"2","author":"M. Hause","year":"2004","unstructured":"Hause, M.: Use-cases to aid safe design. Electronics Systems and Software\u00a02, 38\u201341 (2004)","journal-title":"Electronics Systems and Software"},{"key":"29_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"129","DOI":"10.1007\/978-3-540-31797-5_14","volume-title":"UML Modeling Languages and Applications","author":"R.G. Pettit IV","year":"2005","unstructured":"Pettit IV, R.G., Street, J.A.: Lessons Learned Applying UML in the Design of Mission-Critical Software. In: Nunes, N.J., Selic, B., Rodrigues da Silva, A., Toval Alvarez, A. (eds.) UML Modeling Languages and Applications. LNCS, vol.\u00a03297, pp. 129\u2013137. Springer, Heidelberg (2005)"},{"key":"29_CR12","doi-asserted-by":"publisher","first-page":"343","DOI":"10.1109\/RE.2006.70","volume-title":"14th IEEE International Requirements Engineering Conference (RE\u201906)","author":"A. Ebnenasir","year":"2006","unstructured":"Ebnenasir, A., Cheng, B.H.C., Konrad, S.: Use Case-Based Modeling and Analysis of Failsafe Fault-Tolerance. In: Glinz, M. (ed.) 14th IEEE International Requirements Engineering Conference (RE\u201906), St.Louis, USA, pp. 343\u2013344. IEEE Computer Society Press, Los Alamitos (2006)"},{"key":"29_CR13","doi-asserted-by":"publisher","first-page":"34","DOI":"10.1007\/s00766-004-0194-4","volume":"10","author":"G. Sindre","year":"2005","unstructured":"Sindre, G., Opdahl, A.L.: Eliciting Security Requirements with Misuse Cases. Requirements Engineering\u00a010, 34\u201344 (2005)","journal-title":"Requirements Engineering"},{"key":"29_CR14","first-page":"9","volume-title":"10th Anniversary IEEE Joint International Requirements Engineering Conference (RE\u201902), Essen, Germany","author":"I.F. Alexander","year":"2002","unstructured":"Alexander, I.F.: Initial Industrial Experience of Misuse Cases in Trade-Off Analysis. In: Pohl, K. (ed.) 10th Anniversary IEEE Joint International Requirements Engineering Conference (RE\u201902), Essen, Germany, pp. 9\u201313. IEEE Computer Society Press, Los Alamitos (2002)"},{"key":"29_CR15","doi-asserted-by":"publisher","first-page":"58","DOI":"10.1109\/MS.2003.1159030","volume":"20","author":"I.F. Alexander","year":"2003","unstructured":"Alexander, I.F.: Misuse Cases, Use Cases with Hostile Intent. IEEE Software\u00a020, 58\u201366 (2003)","journal-title":"IEEE Software"},{"key":"29_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"311","DOI":"10.1007\/978-3-540-30138-7_26","volume-title":"Computer Safety, Reliability, and Security","author":"B.A. Gran","year":"2004","unstructured":"Gran, B.A., Fredriksen, R., Thunem, A.P.-J.: An Approach for Model-Based Risk Assessment. In: Heisel, M., Liggesmeyer, P., Wittmann, S. (eds.) SAFECOMP 2004. LNCS, vol.\u00a03219, pp. 311\u2013324. Springer, Heidelberg (2004)"},{"key":"29_CR17","series-title":"Lecture Notes in Computer Science","first-page":"144","volume-title":"UML 2003","author":"J. J\u00fcrjens","year":"2003","unstructured":"J\u00fcrjens, J.: Developing Safety-Critical Systems with UML. In: Stevens, P., Whittle, J., Booch, G. (eds.) UML 2003. LNCS, vol.\u00a02863, pp. 144\u2013159. Springer, Heidelberg (2003)"},{"key":"29_CR18","unstructured":"Hungar, H.: UML-basierte Entwicklung sikkerheitskritische Systemen im Bahnbereich. Dagstuhl Workshop on Model-Based Development of Embedded Systems, Dagstuhl, Germany (January, 9-13), pp. 63-64. Tech Univ Braunschweig (2006)"},{"key":"29_CR19","volume-title":"HYBRIS - Efficient Specification and Analysis of Hybrid Systems - Part III: RCSD - A UML 2.0 Profile for the Railway Control System Domain (Draft Version)","author":"K. Berkenk\u00f6tter","year":"2006","unstructured":"Berkenk\u00f6tter, K., Hannemann, U., Peleska, J., HYBRIS,: HYBRIS - Efficient Specification and Analysis of Hybrid Systems - Part III: RCSD - A UML 2.0 Profile for the Railway Control System Domain (Draft Version). Univ. Bremen, Germany (2006)"},{"key":"29_CR20","unstructured":"Tenzer, J.: Exploration games for safety-critical system design with UML 2.0. In: Fernandez, E.B., et al. (eds.): 3rd International Workshop on Critical Systems Development with UML, CSDUML\u201904, Lisbon, Portugal, 12 Oct, Technical Report I0415. pp. 41-55. Technische Universit\u00e4t M\u00fcnchen, (2004)"},{"key":"29_CR21","unstructured":"St\u00e5lhane, T., Pham, H.T.: Assessment and Analysis of Robustness for a Web-Based System. In: Isaias, P., et al. (eds.) IADIS International Conference on WWW\/Internet, Murcia, Spain, 5-8 October, IADIS Press (2006)"},{"key":"29_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1007\/11586012_10","volume-title":"Software Process Improvement","author":"T. Lauritzen","year":"2005","unstructured":"Lauritzen, T., St\u00e5lhane, T.: Safety Methods in Software Process Improvement. In: Richardson, I., Abrahamsson, P., Messnarz, R. (eds.) Software Process Improvement. LNCS, vol.\u00a03792, pp. 95\u2013105. Springer, Heidelberg (2005)"},{"key":"29_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","DOI":"10.1007\/b95647","volume-title":"Conceptual Modeling \u2013 ER 2004","author":"E. Fernandez-Medina","year":"2004","unstructured":"Fernandez-Medina, E., Trujillo, J., Villaroel, R., Piattini, M.: Extending UML for Designing Secure Data Warehouses. In: Atzeni, P., Chu, W., Lu, H., Zhou, S., Ling, T.-W. (eds.) ER 2004. LNCS, vol.\u00a03288, Springer, Heidelberg (2004)"},{"key":"29_CR24","series-title":"Lecture Notes in Computer Science","volume-title":"ER 2006","author":"A. Rodriguez","year":"2006","unstructured":"Rodriguez, A., Fernandez-Medina, E., Piattini, M.: Capturing Security Requirements in Business Processes through a UML 2. In: Roddick, J.F., Benjamins, V.R., Si-Sa\u00efd Cherfi, S., Chiang, R., Claramunt, C., Elmasri, R., Grandi, F., Han, H., Hepp, M., Lytras, M., Mi\u0161i\u0107, V.B., Poels, G., Song, I.-Y., Trujillo, J., Vangenot, C. (eds.) ER 2006. LNCS, vol.\u00a04231, Springer, Heidelberg (2006)"},{"key":"29_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"426","DOI":"10.1007\/3-540-45800-X_33","volume-title":"UML 2002","author":"T. Lodderstedt","year":"2002","unstructured":"Lodderstedt, T., Basin, D., Doser, J.: SecureUML: A UML-Based Modeling Language for Model-Driven Security. In: J\u00e9z\u00e9quel, J.-M., Hussmann, H., Cook, S. (eds.) UML 2002. LNCS, vol.\u00a02460, pp. 426\u2013441. Springer, Heidelberg (2002)"},{"key":"29_CR26","series-title":"Lecture Notes in Computer Science","first-page":"322","volume-title":"Software Engineering Education in the Modern Age","author":"J. J\u00fcrjens","year":"2006","unstructured":"J\u00fcrjens, J.: Sound methods and effective tools for model-based security engineering with UML. In: Inverardi, P., Jazayeri, M. (eds.) ICSE 2005. LNCS, vol.\u00a04309, pp. 322\u2013331. Springer, Heidelberg (2006)"},{"key":"29_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"355","DOI":"10.1007\/978-3-540-73031-6_27","volume-title":"REFSQ 2007","author":"G. Sindre","year":"2007","unstructured":"Sindre, G.: Mal-activity diagrams to capture attacks on business processes. In: Sawyer, P., Paech, B., Heymans, P. (eds.) REFSQ 2007, Trondheim, Norway, 11-12 June. LNCS, vol.\u00a04542, pp. 355\u2013366. Springer, Heidelberg (2007)"},{"key":"29_CR28","doi-asserted-by":"publisher","first-page":"247","DOI":"10.1007\/978-3-540-72677-7_15","volume-title":"Conceptual Modelling in Information Systems Engineering","author":"G. Sindre","year":"2007","unstructured":"Sindre, G., Opdahl, A.L.: Capturing Dependability Threats in Conceptual Modelling. In: Krogstie, J., et al. (eds.) Conceptual Modelling in Information Systems Engineering, pp. 247\u2013260. Springer, Heidelberg (2007)"},{"key":"29_CR29","unstructured":"Diallo, M.H., Romero-Mariona, J., Sim, S.E., Richardson, D.J.: A Comparative Evaluation of Three Approaches to Specifying Security Requirements. REFSQ\u201906, Luxembourg (2006)"},{"key":"29_CR30","series-title":"IFIP Series","volume-title":"IFIP WG8.1 Working Conference on Situational Method Engineering: Fundamentals and Experiences (ME\u201907)","author":"G. Sindre","year":"2007","unstructured":"Sindre, G.: A look at misuse cases for safety concerns. In: Henderson-Sellers, B., et al. (eds.) IFIP WG8.1 Working Conference on Situational Method Engineering: Fundamentals and Experiences (ME\u201907), Geneva, Switzerland. IFIP Series, Springer, Heidelberg (2007)"},{"key":"29_CR31","unstructured":"Stamatis, D.H.: Failure Mode and Effect Analysis: FMEA from theory to execution. American Society for Quality (ASQ), Milwaukee, Wisconsin (1995)"},{"key":"29_CR32","doi-asserted-by":"publisher","first-page":"982","DOI":"10.1287\/mnsc.35.8.982","volume":"35","author":"F.D. Davis","year":"1989","unstructured":"Davis, F.D., Bagozzi, R.P., Warshaw, P.R.: User Acceptance of Computer Technology: A Comparison of Two Theoretical Models. Management Science\u00a035, 982\u20131003 (1989)","journal-title":"Management Science"},{"key":"29_CR33","unstructured":"Tukey, J.W.: Data analysis and behavioral science or learning to bear the quantitative\u2019s man burden by shunning badmandments. In: Jones, L.W. (ed.) The Collected Works of John W. Tukey, Wadsworth, Monterey, CA. Tukey, vol.\u00a0III, pp. 187\u2013389 (1986)"},{"key":"29_CR34","volume-title":"A New View of Statistics","author":"W.G. Hopkins","year":"2001","unstructured":"Hopkins, W.G.: A New View of Statistics. University of Queensland, Australia, Brisbane (2001)"},{"key":"29_CR35","doi-asserted-by":"publisher","DOI":"10.1007\/978-1-4615-4625-2","volume-title":"Experimentation in Software Engineering: An Introduction","author":"C. Wohlin","year":"2000","unstructured":"Wohlin, C., Runeson, P., H\u00f6st, M., Ohlsson, M.C., Regnell, B., Wessl\u00e9n, A.: Experimentation in Software Engineering: An Introduction. Kluwer Academic, Norwell, MA, USA (2000)"},{"key":"29_CR36","first-page":"95","volume-title":"7th International Conference on Empirical Assessment & Evaluation in Software Engineering (EASE\u201903)","author":"P. Runeson","year":"2003","unstructured":"Runeson, P.: Using Students as Experiment Subjects \u2013 An Analysis on Graduate and Freshmen Student Data. In: Linkman, S. (ed.) 7th International Conference on Empirical Assessment & Evaluation in Software Engineering (EASE\u201903), pp. 95\u2013102. Keele University, Staffordshire, UK (2003)"},{"key":"29_CR37","doi-asserted-by":"publisher","first-page":"521","DOI":"10.1109\/TSE.2004.43","volume":"30","author":"E. Arisholm","year":"2004","unstructured":"Arisholm, E., Sj\u00f8berg, D.I.K.: Evaluating the Effect of a Delegated versus Centralized Control Style on the Maintainability of Object-oriented Software. IEEE Transactions on Software Engineering\u00a030, 521\u2013534 (2004)","journal-title":"IEEE Transactions on Software Engineering"}],"container-title":["Lecture Notes in Computer Science","Conceptual Modeling - ER 2007"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-75563-0_29","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,4,28]],"date-time":"2020-04-28T01:35:40Z","timestamp":1588037740000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-75563-0_29"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007]]},"ISBN":["9783540755623","9783540755630"],"references-count":37,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-75563-0_29","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2007]]}}}