• Home

  • Documents

  • Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University
21
Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Tags:

Embed Size (px)

Citation preview

Page 1: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Misuse Cases: Use Cases with Hostile Intent

Presented by: Frank XuGannon University

Page 2: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Objectives•Understand what misuse cases are•Understand applications of misuse cases

▫eliciting requirements▫eliciting exceptions▫developing test cases

Page 3: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Use Cases •Individual use case describes

▫how a particular actor(agent) interacts with the system to achieve a result of value to the specific actor.

•The set of all use cases together describes ▫the complete behavior of the system. •A use-case model▫provide graphical overview of actors, use

cases, and their dependency.

Page 4: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Drive the car

Park the car

Lock the car

Page 5: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Misuse Cases

•The scenarios in which such 'negative' agents attempt to defeat the system under design

Page 6: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Misuse Case

• Misuse cases are negative use cases• Actor is a hostile agent

Page 7: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Applications of Misuse Cases•Eliciting functional requirements•Eliciting nonfunctional requirements•Eliciting exceptions•Developing test cases

Page 8: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Functional requirements

Page 9: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Functional requirements

Page 10: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Functional Requirements

Page 11: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Functional Requirements

Page 12: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Non-functional Requirements

“The car shall be constructed to the intrusion resistance defined in STD-123-456.”

Page 13: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Safety Requirements•Misuse Cases are not limited to eliciting

Security Requirements, or threats from human agents.

•A negative agent such as bad weather can be represented as a misuse case

Drivers may lose control of their cars if the road is covered in ice or wet leaves

The weather as an agent 'intending' to make the car skid.

Page 14: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Safety Requirements

Page 15: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting “-ility” Requirements

Nonfunctional Requirements

Negative agents

Reliability Human error, storms, design errors, interference on telecommunication links

Maintainability and Portability Inflexible design, incompatible platform

Usability Poorly designed the user interface

Page 16: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Exceptions

•An exception is an undesired event that could cause a system to fail.▫“What could they do to make this go

wrong?”▫Divided by 0

•Handling such exception lead to resumption of normal operations, or lead to a safe shutdown.▫GE locomotive – satellite signal

transmitting vs. weather

Page 17: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Test Cases

Page 18: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Eliciting Test Cases

•Products of use/misuse-case analysis that can contribute to effective test planning include▫ Specific failure modes (for real-time,

embedded, and safety related systems)▫ Security threats model (for distributed

commercial and government systems)▫Exception-handling scenarios (always

useful, often directly translating to test scripts)

Page 19: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Key points

•Misuse Case models are a promising approach for ▫Eliciting functional requirements▫Eliciting various non-functional requirements,

such as for security, safety, etc ▫Identifying threats to system operation ▫Identifying ways of neutralizing those threats

Page 20: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Reference

I. Alexander, "Misuse Cases: Use Cases with Hostile Intent," IEEE Software, vol. 20,  no. 1,  pp. 58-66,  Jan/Feb,  2003.

Page 21: Misuse Cases: Use Cases with Hostile Intent Presented by: Frank Xu Gannon University

Questions?


Hostile Takeover

Hostile Takeover

Documents
JAMES GANNON

JAMES GANNON

Documents
Gannon Studios Newborn Photography Brochure

Gannon Studios Newborn Photography Brochure

Documents
Foreign Hostile Takeovers

Foreign Hostile Takeovers

Documents
Hostile Takeovers? - NBER

Hostile Takeovers? - NBER

Documents
Hostile Case Voda

Hostile Case Voda

Documents
Gannon Magazine October 2013

Gannon Magazine October 2013

Documents
Hostile environment assistance

Hostile environment assistance

Technology
Hostile Qualifications

Hostile Qualifications

Documents
Hostile Takeovers and Hostile Defenses: A Comparative Look

Hostile Takeovers and Hostile Defenses: A Comparative Look

Documents
Hostile takeover defenses

Hostile takeover defenses

Economy & Finance
Chris Kim Bio - Gannon

Chris Kim Bio - Gannon

Documents
Measuring Hostile Interpretation Bias: The WSAP-Hostility ... validation paper... · MEASURING HOSTILE INTERPRETATION BIAS 1 Measuring Hostile Interpretation Bias: The WSAP-Hostility

Measuring Hostile Interpretation Bias: The WSAP-Hostility ... validation paper... · MEASURING HOSTILE INTERPRETATION BIAS 1 Measuring Hostile Interpretation Bias: The WSAP-Hostility

Documents
hostile takeover

hostile takeover

Documents
Gannon University International brochure - Intelligent Partners

Gannon University International brochure - Intelligent Partners

Documents
Copyright By Joseph Charles Gannon 2004fsel.engr.utexas.edu/pdfs/Gannon, Joseph.pdf · Joseph Charles Gannon, B.S. Thesis Presented to the Faculty of the Graduate School of The University

Copyright By Joseph Charles Gannon 2004fsel.engr.utexas.edu/pdfs/Gannon, Joseph.pdf · Joseph Charles Gannon, B.S. Thesis Presented to the Faculty of the Graduate School of The University

Documents
Gannon University

Gannon University

Documents
Brian Gannon DL Conference 2013

Brian Gannon DL Conference 2013

Business
Marc M Gannon Portfolio

Marc M Gannon Portfolio

Documents
Eliminating Hostile Environments

Eliminating Hostile Environments

Documents
Chain Oils - Gannon Oils

Chain Oils - Gannon Oils

Documents
Gannon Magazine July 2015

Gannon Magazine July 2015

Documents
Hostile Relations

Hostile Relations

Documents
Common Diagnoses in Hostile Work Environment Cases - New York

Common Diagnoses in Hostile Work Environment Cases - New York

Documents
CSC 593: Secure Software Engineering SeminarSlide #1 Misuse Cases: Use Cases With Hostile Intent Ian Alexander

CSC 593: Secure Software Engineering SeminarSlide #1 Misuse Cases: Use Cases With Hostile Intent Ian Alexander

Documents
Dearie v. Gannon

Dearie v. Gannon

Documents
2015 Football Game Notes - Gannon

2015 Football Game Notes - Gannon

Documents
2014 Football Game Notes - Gannon

2014 Football Game Notes - Gannon

Documents
Hostile issue 2

Hostile issue 2

Documents
MICHAEL GANNON - WordPress.com

MICHAEL GANNON - WordPress.com

Documents