{"id":"https://openalex.org/W1919601372","doi":"https://doi.org/10.1109/re.2015.7320458","title":"Security Assurance Requirements Engineering (STARE) for trustworthy service level agreements","display_name":"Security Assurance Requirements Engineering (STARE) for trustworthy service level agreements","publication_year":2015,"publication_date":"2015-08-01","ids":{"openalex":"https://openalex.org/W1919601372","doi":"https://doi.org/10.1109/re.2015.7320458","mag":"1919601372"},"language":"en","primary_location":{"id":"doi:10.1109/re.2015.7320458","is_oa":false,"landing_page_url":"https://doi.org/10.1109/re.2015.7320458","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 IEEE 23rd International Requirements Engineering Conference (RE)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086817350","display_name":"Yudhistira Nugraha","orcid":"https://orcid.org/0000-0002-1875-0219"},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Yudhistira Nugraha","raw_affiliation_strings":["Department of Computer Science, University of Oxford, Oxford, U.K","Centre for Doctoral Training in Cyber Security, Department of Computer Science-University of Oxford, OX1 3QD, U.K"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Oxford, Oxford, U.K","institution_ids":["https://openalex.org/I40120149"]},{"raw_affiliation_string":"Centre for Doctoral Training in Cyber Security, Department of Computer Science-University of Oxford, OX1 3QD, U.K","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5086817350"],"corresponding_institution_ids":["https://openalex.org/I40120149"],"apc_list":null,"apc_paid":null,"fwci":0.7946,"has_fulltext":false,"cited_by_count":3,"citation_normalized_percentile":{"value":0.8032159,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":94},"biblio":{"volume":"30","issue":null,"first_page":"398","last_page":"399"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9959999918937683,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6341342926025391},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6225021481513977},{"id":"https://openalex.org/keywords/requirements-engineering","display_name":"Requirements engineering","score":0.5493710041046143},{"id":"https://openalex.org/keywords/service-provider","display_name":"Service provider","score":0.5081946849822998},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.5004451274871826},{"id":"https://openalex.org/keywords/trustworthiness","display_name":"Trustworthiness","score":0.4548552334308624},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.45316165685653687},{"id":"https://openalex.org/keywords/requirements-analysis","display_name":"Requirements analysis","score":0.4472978413105011},{"id":"https://openalex.org/keywords/security-engineering","display_name":"Security engineering","score":0.4357624650001526},{"id":"https://openalex.org/keywords/service-level-agreement","display_name":"Service-level agreement","score":0.4191022515296936},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.3372926712036133},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.33060014247894287},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.2329132854938507},{"id":"https://openalex.org/keywords/quality-of-service","display_name":"Quality of service","score":0.21915337443351746},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.21558129787445068},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.16410431265830994},{"id":"https://openalex.org/keywords/telecommunications","display_name":"Telecommunications","score":0.09267210960388184},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.07946747541427612}],"concepts":[{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6341342926025391},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6225021481513977},{"id":"https://openalex.org/C6604083","wikidata":"https://www.wikidata.org/wiki/Q376937","display_name":"Requirements engineering","level":3,"score":0.5493710041046143},{"id":"https://openalex.org/C116537","wikidata":"https://www.wikidata.org/wiki/Q2169973","display_name":"Service provider","level":3,"score":0.5081946849822998},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.5004451274871826},{"id":"https://openalex.org/C153701036","wikidata":"https://www.wikidata.org/wiki/Q659974","display_name":"Trustworthiness","level":2,"score":0.4548552334308624},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.45316165685653687},{"id":"https://openalex.org/C59488412","wikidata":"https://www.wikidata.org/wiki/Q187147","display_name":"Requirements analysis","level":3,"score":0.4472978413105011},{"id":"https://openalex.org/C13159133","wikidata":"https://www.wikidata.org/wiki/Q365674","display_name":"Security engineering","level":5,"score":0.4357624650001526},{"id":"https://openalex.org/C2778160497","wikidata":"https://www.wikidata.org/wiki/Q869830","display_name":"Service-level agreement","level":3,"score":0.4191022515296936},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.3372926712036133},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.33060014247894287},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.2329132854938507},{"id":"https://openalex.org/C5119721","wikidata":"https://www.wikidata.org/wiki/Q220501","display_name":"Quality of service","level":2,"score":0.21915337443351746},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.21558129787445068},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.16410431265830994},{"id":"https://openalex.org/C76155785","wikidata":"https://www.wikidata.org/wiki/Q418","display_name":"Telecommunications","level":1,"score":0.09267210960388184},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.07946747541427612},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/re.2015.7320458","is_oa":false,"landing_page_url":"https://doi.org/10.1109/re.2015.7320458","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2015 IEEE 23rd International Requirements Engineering Conference (RE)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.6499999761581421}],"awards":[],"funders":[{"id":"https://openalex.org/F4320328515","display_name":"Lembaga Pengelola Dana Pendidikan","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":15,"referenced_works":["https://openalex.org/W106538380","https://openalex.org/W1554174629","https://openalex.org/W1571787747","https://openalex.org/W1968060304","https://openalex.org/W2000588234","https://openalex.org/W2007523346","https://openalex.org/W2110329234","https://openalex.org/W2124405605","https://openalex.org/W2136275632","https://openalex.org/W2146863076","https://openalex.org/W2155502441","https://openalex.org/W2396194391","https://openalex.org/W4250195845","https://openalex.org/W6604382485","https://openalex.org/W6712325681"],"related_works":["https://openalex.org/W1490921502","https://openalex.org/W2472769502","https://openalex.org/W4254568495","https://openalex.org/W2047626779","https://openalex.org/W2238632658","https://openalex.org/W142054160","https://openalex.org/W2062417677","https://openalex.org/W2242308721","https://openalex.org/W4300926240","https://openalex.org/W3153864189"],"abstract_inverted_index":{"With":[0],"the":[1,20,64,67,96,119,123,126,129,150,154,175],"development":[2],"of":[3,9,40,66,88,107,114,122,131,152,178,196],"trustworthy":[4,30,200],"services,":[5,31,182],"security":[6,41,111,115],"requirements":[7,27,42,179],"are":[8],"paramount":[10],"importance":[11],"for":[12,22,29,181],"any":[13],"service":[14,48,162],"(X-as-a-Service).":[15],"This":[16,52],"work-in-progress":[17],"paper":[18],"motivates":[19],"need":[21],"a":[23,38,47,147,191],"new":[24],"approach":[25],"to":[26,35,56,60,83,168],"engineering":[28,180],"which":[32],"helps":[33],"organisations":[34],"systematically":[36],"define":[37],"set":[39],"and":[43,117,143,170,199],"describe":[44],"these":[45],"in":[46,194,202],"level":[49],"agreement":[50],"(SLA).":[51],"proposed":[53,74],"research":[54,75,188],"aims":[55],"provide":[57],"adequate":[58],"assurances":[59],"users":[61],"by":[62,94],"introducing":[63],"concept":[65,121],"Trustworthy":[68],"Service":[69],"Level":[70],"Agreement":[71],"(TSLA).":[72],"The":[73,80,104],"design":[76],"involves":[77],"three":[78],"stages:":[79],"first":[81],"is":[82,133,184],"develop":[84],"an":[85],"initial":[86],"method":[87],"Security":[89,98],"Assurance":[90],"Requirements":[91,100],"Engineering":[92,101],"(STARE)":[93],"refining":[95],"nine":[97],"Quality":[99],"(SQUARE)":[102],"activities.":[103],"key":[105],"activities":[106,156],"STARE":[108,132,155],"include:":[109],"eliciting":[110],"requirements,":[112,116],"classification":[113],"developing":[118],"novel":[120],"TSLA.":[124],"In":[125],"second":[127],"stage,":[128],"effectiveness":[130],"evaluated":[134,159],"using":[135,160],"two":[136],"real-world":[137],"case":[138],"studies:":[139],"state":[140,177],"cyber":[141],"defence":[142,169],"lawful":[144],"interception":[145],"as":[146],"service.":[148],"Finally,":[149],"process":[151],"implementing":[153],"will":[157,189],"be":[158],"selected":[161],"providers":[163],"that":[164,186],"deliver":[165],"such":[166],"services":[167,201],"law":[171],"enforcement":[172],"agencies.":[173],"Given":[174],"current":[176],"it":[183],"anticipated":[185],"this":[187],"have":[190],"significant":[192],"impact":[193],"terms":[195],"guaranteeing":[197],"secure":[198],"various":[203],"domains.":[204]},"counts_by_year":[{"year":2022,"cited_by_count":1},{"year":2020,"cited_by_count":1},{"year":2017,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}