A Fuzzy-Based Technique for Describing Security Requirements of Intrusion Tolerant Systems
To care for security in early stages of software development has always been a major engineering trend. However, due to the existence of unpreventable and accidental security faults within the system, it is not always possible to entirely identify and mitigate the security threats. This may eventually lead to security failure of the target system. To avoid security failure, it is required to incorporate fault tolerance (i.e. intrusion tolerant) into the security requirements of the system. In this paper, the authors propose a new technique toward description of security requirements of Intrusion Tolerant Systems (ITSs) using fuzzy logic.