Product Agility

A blog about agile product discovery and delivery,
collaboration, and continual improvement

Tips on Software Security Requirements

December 13th, 2011 By Ellen Gottesdiener

Security requirements are a difficult quality attribute to elicit and specify. (Quality attributes are one the three types of nonfunctional requirements—along with interfaces, and design & implementation constraints*). Distinguishing can help. So too, it helps to

Sue Burk distinguishes between security requirements and security controls, shares four categories of security requirements, provides suggestions for eliciting security requirements, and explains why making them testable is important in her expert response.

References:

* The Software Requirements Memory Jogger

EBG Product Agility Newsletter

Get tips, stories and news on product discovery & delivery

Join our community and receive periodic tips, stories, and news on agile product management, product ownership, backlog and value management, collaboration, teamwork, and more.

Product Agility

A blog about agile product discovery and delivery,
collaboration, and continual improvement

Tips on Software Security Requirements

Leave a Reply Cancel reply

Form Heading

Lists*

EBG Product Agility Newsletter

Get tips, stories and news on product discovery & delivery