icon-carat-right menu search cmu-wordmark
Carnegie Mellon University

An Evaluation of A-SQUARE for COTS Acquisition

Technical Note
By
An evaluation of the effectiveness of Software Quality Requirements Engineering for Acquisition (A-SQUARE) in a project to select a COTS product for the advanced metering infrastructure of a smart grid.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2014-TN-003
DOI (Digital Object Identifier)
10.1184/R1/6571916.v1
Topic or Tag

Abstract

Developed by the Software Engineering Institute (SEI) at Carnegie Mellon University, Software Quality Requirements Engineering for Acquisition (A-SQUARE) is a methodology used for eliciting and prioritizing security requirements as part of the acquisition process. In the project described in this paper, we evaluated the effectiveness of the A-SQUARE method by applying it to a COTS product for the advanced metering infrastructure of a smart grid. We evaluated the ability of the A-SQUARE method to identify security requirements for the COTS product;identify candidate COTS products;elicit, categorize, and prioritize security requirements;prioritize COTS products;and select a COTS product. We also evaluated the usability of the A-SQUARE tool using qualitative evaluation criteria.

SHARE
Download PDF
Part of a Collection

Cybersecurity Engineering Research: Security Quality Requirements Engineering (SQUARE) Collection

Security Quality Requirements Engineering (SQUARE)
Cite This Technical Note

Mani, S., & Mead, N. (2014, May 13). An Evaluation of A-SQUARE for COTS Acquisition. (Technical Note CMU/SEI-2014-TN-003). Retrieved November 21, 2024, from https://doi.org/10.1184/R1/6571916.v1.

@techreport{mani_2014,
author={Mani, Sidhartha and Mead, Nancy},
title={An Evaluation of A-SQUARE for COTS Acquisition},
month={{May},
year={{2014},
number={{CMU/SEI-2014-TN-003},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6571916.v1},
note={Accessed: 2024-Nov-21}
}

Mani, Sidhartha, and Nancy Mead. "An Evaluation of A-SQUARE for COTS Acquisition." (CMU/SEI-2014-TN-003). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, May 13, 2014. https://doi.org/10.1184/R1/6571916.v1.

S. Mani, and N. Mead, "An Evaluation of A-SQUARE for COTS Acquisition," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Note CMU/SEI-2014-TN-003, 13-May-2014 [Online]. Available: https://doi.org/10.1184/R1/6571916.v1. [Accessed: 21-Nov-2024].

Mani, Sidhartha, and Nancy Mead. "An Evaluation of A-SQUARE for COTS Acquisition." (Technical Note CMU/SEI-2014-TN-003). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 13 May. 2014. https://doi.org/10.1184/R1/6571916.v1. Accessed 21 Nov. 2024.

Mani, Sidhartha; & Mead, Nancy. An Evaluation of A-SQUARE for COTS Acquisition. CMU/SEI-2014-TN-003. Software Engineering Institute. 2014. https://doi.org/10.1184/R1/6571916.v1

Ask a question about this Technical Note