Topics

Topics addressed by ESPRE are those which will promote discussion about advancing Security & Privacy Requirements Engineering. These include, but are not excluded to:

  • Adaptation of security and privacy requirements
  • Consideration of legal compliance during security & privacy requirements engineering
  • Evolution of security and privacy requirements
  • Identification and management of all stakeholders (including attackers)
  • Modelling multilateral stakeholder perspectives on security and privacy
  • Modelling of domain knowledge for security and privacy requirements
  • Modelling of trust and risk
  • Ontologies for security and privacy requirements engineering
  • Positive (and especially negative) lessons learned applying security and requirements engineering in practice
  • Scalability of security requirements engineering approaches
  • Security and privacy requirements engineering processes
  • Security and privacy requirements elicitation and analysis
  • Security requirements-based testing
  • Teaching and training in security and privacy requirements engineering
  • The role of security and privacy requirements engineering to support design innovation
  • Use of requirements engineering to create security and privacy standard-compliant software
  • Validation and verification of security and privacy requirements