Cybersecurity Engineering Research: Security Quality Requirements Engineering (SQUARE) Collection
Security Quality Requirements Engineering (SQUARE) is a nine-step process that helps organizations build security, including privacy, into the early stages of the production lifecycle. Instructional materials are available for download that can be used to teach the SQUARE method.
Using SQUARE can enable your organization to develop more secure, survivable software and systems, more predictable schedules and costs, and achieve lower costs.
SQUARE for Privacy, or P-SQUARE, is available for free to help you use the SQUARE process for security, privacy, or both.
SQUARE for Acquisition, or A-SQUARE, is available for free to help stakeholders, requirements engineers, and contractors/vendors, for a variety of acquisition cases.
See the following publications for more information about SQUARE and SQUARE tools:
Security Quality Requirements Engineering Technical Report
• Technical Report
In this 2005 report, the authors present the SQUARE Methodology for eliciting and prioritizing security requirements in software development projects.Read