{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,31]],"date-time":"2026-01-31T01:08:29Z","timestamp":1769821709165,"version":"3.49.0"},"reference-count":45,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/OAPA.html"}],"funder":[{"DOI":"10.13039\/501100004055","name":"Deanship of Scientific Research at the King Fahd University of Petroleum and Minerals, Saudi Arabia","doi-asserted-by":"publisher","award":["IN161024"],"award-info":[{"award-number":["IN161024"]}],"id":[{"id":"10.13039\/501100004055","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2018]]},"DOI":"10.1109\/access.2018.2840322","type":"journal-article","created":{"date-parts":[[2018,5,24]],"date-time":"2018-05-24T19:12:32Z","timestamp":1527189152000},"page":"28611-28631","source":"Crossref","is-referenced-by-count":36,"title":["A Readiness Model for Security Requirements Engineering"],"prefix":"10.1109","volume":"6","author":[{"given":"Yusuf","family":"Mufti","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Mahmood","family":"Niazi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-7950-0099","authenticated-orcid":false,"given":"Mohammad","family":"Alshayeb","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-5786-5118","authenticated-orcid":false,"given":"Sajjad","family":"Mahmood","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref39","doi-asserted-by":"publisher","DOI":"10.1109\/ICGSE.2008.37"},{"key":"ref38","first-page":"68","article-title":"Systematic mapping studies in software engineering","author":"petersen","year":"2008","journal-title":"Proc 12th Int Conf Eval Assess Softw Eng (EASE)"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1016\/j.csi.2013.12.006"},{"key":"ref32","first-page":"273","article-title":"Using the common criteria to elicit security requirements with use cases","author":"ware","year":"2005","journal-title":"Proc Southeastcon"},{"key":"ref31","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2010.05.007"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/ICCAIE.2010.5735087"},{"key":"ref37","doi-asserted-by":"publisher","DOI":"10.1109\/TCC.2015.2511719"},{"key":"ref36","doi-asserted-by":"publisher","DOI":"10.1109\/CIT\/IUCC\/DASC\/PICOM.2015.116"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2013.61"},{"key":"ref34","article-title":"DIGS: A framework for discovering goals for security requirements engineering","author":"riaz","year":"2016","journal-title":"Proceedings of Empirical Software Engineering and Measurement"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1016\/j.infsof.2009.05.004"},{"key":"ref40","doi-asserted-by":"publisher","DOI":"10.1108\/17410390410560991"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/2393216.2393238"},{"key":"ref12","doi-asserted-by":"publisher","DOI":"10.1016\/j.jare.2014.03.001"},{"key":"ref13","doi-asserted-by":"publisher","DOI":"10.1145\/2554850.2554921"},{"key":"ref14","first-page":"739","article-title":"Privacy and security requirements framework for the Internet of Things (IoT)","author":"alqassem","year":"2014","journal-title":"Proc 36th Int Conf Softw Eng"},{"key":"ref15","article-title":"Arguing security: A framework for analyzing security requirements","author":"haley","year":"2007"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1016\/j.compeleceng.2012.08.008"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1109\/EUROMICRO.2005.51"},{"key":"ref18","year":"2012","journal-title":"Common Criteria for Information Technology Security Evaluation Part 2 Security Functional Components"},{"key":"ref19","author":"pohl","year":"2010","journal-title":"Requirements Engineering Fundamentals Principles and Techniques"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.1999.816013"},{"key":"ref4","author":"rhodes-ousley","year":"2013","journal-title":"Information Security the Complete Reference"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/ICSEA.2009.65"},{"key":"ref3","author":"wong","year":"2012","journal-title":"Security Metrics A Beginner&#x2019;s Guide"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1002\/9781118027974"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/STAST.2011.6059249"},{"key":"ref5","doi-asserted-by":"crossref","first-page":"662","DOI":"10.1007\/s11623-012-0222-3","article-title":"Software Security","volume":"36","author":"mcgraw","year":"2012","journal-title":"Datenschutz und Datensicherheit"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.1109\/ICACCI.2016.7732349"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/WETICE.2016.47"},{"key":"ref2","author":"brown","year":"2014","journal-title":"Computer Security Threats A Brief History"},{"key":"ref9","doi-asserted-by":"crossref","first-page":"213","DOI":"10.1016\/j.procs.2015.08.442","article-title":"Developing a novel holistic taxonomy of security requirements","volume":"62","author":"rjaibi","year":"2015","journal-title":"Procedia Comput Sci"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ISSRE.2006.43"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-73460-4_11"},{"key":"ref45","doi-asserted-by":"crossref","first-page":"53","DOI":"10.5381\/jot.2003.2.1.c6","article-title":"Engineering security requirements","volume":"2","author":"donald","year":"2003","journal-title":"J Object Technol"},{"key":"ref22","first-page":"354","article-title":"Using abuse frames to bound the scope of security problems","author":"lin","year":"2004","journal-title":"Proc 12th IEEE Int Requirements Eng Conf"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2016.03.069"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/ICGSE.2009.28"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/s00766-004-0194-4"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/52.300079"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/ICRE.2003.1232791"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1016\/j.jss.2004.09.001"},{"key":"ref26","first-page":"21","article-title":"Attack trees","volume":"24","author":"schneier","year":"1999","journal-title":"Dr Dobb&#x2019;s J"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/ICGSE.2008.37"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2010.101"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/8274985\/08364540.pdf?arnumber=8364540","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,26]],"date-time":"2022-01-26T06:01:55Z","timestamp":1643176915000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8364540\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"references-count":45,"URL":"https:\/\/doi.org\/10.1109\/access.2018.2840322","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018]]}}}