The participation of business experts in the elicitation and formulation of Information Assurance & Security (IAS) requirements is crucial. Although business experts have security-related knowledge, there is still no formalised business process modelling notation allowing them to express this knowledge in a clear, unambiguous manner. In this paper we outline the foundational basis for SecureBPMN - a graphical security modelling extension for the BPMN 2.0. We also align the BPMN with the IAS domain in order to identify points for the extension. SecureBPMN adopts a holistic approach to IAS and is designed to serve as a "communication bridge" between business and security experts. © 2012 Springer-Verlag.
CITATION STYLE
Cherdantseva, Y., Hilton, J., & Rana, O. (2012). Towards SecureBPMN - Aligning BPMN with the information assurance and security domain. In Lecture Notes in Business Information Processing (Vol. 125 LNBIP, pp. 107–115). Springer Verlag. https://doi.org/10.1007/978-3-642-33155-8_9
Mendeley helps you to discover research relevant for your work.