CERT
 
All Research Papers Research Staff Biographies CMU Heinz School CMU School of Computer Science CERT Statistics US-CERT CyLab
 

SQUARE Instructional Materials

The following materials can be used to provide instruction about the Security Quality Requirements Engineering SQUARE methodology:

A set of four lectures, with notes

  • Lecture 1: Security in Software Engineering
    Defines secure software engineering and explains the importance of considering security issues throughout the software development life cycle, particularly during requirements engineering
  • Lecture 2: SQUARE Overview
    Explains how the SQUARE process is conducted and gives brief descriptions of each of its nine steps
  • Lecture 3: SQUARE in Detail, Part 1
    Describes SQUARE Steps 1 through 4 in detail
  • Lecture 4: SQUARE in Detail, Part 2
    Describes SQUARE Steps 5 through 9 in detail

A tutorial

  • Part I: SQUARE Overview
    Provides some background about requirements engineering issues, explains the purpose of the SQUARE method and who is involved in implementing it, gives brief descriptions of each of its nine steps, and describes future work on the method
  • Part II: SQUARE in Detail
    Describes SQUARE Steps 1 through 9 in detail

A workshop guide, which contains a case study. The intention of the workshop is to instill in participants a greater understanding of the SQUARE process. This is done by walking them through a sample scenario based on previously carried out case studies. Participants are split into two teams:

  • Clients: One team acts as a client. This document describes their company and the situation for which they are using SQUARE.
  • Requirements Engineering Team: The other team is the Requirements Engineering team. This document guides them through the scenario.

These materials were developed by Software Engineering Institute staff in conjunction with Carnegie Mellon University's CyLab.

Feedback

We welcome your feedback about your experience using these materials. Please direct your comments to Nancy Mead at 412-268-5756 or this address:

Software Engineering Institute
4500 Fifth Avenue
Pittsburgh, PA, 15213

Downloading the Files

To download the files, you will be required to agree to a license for their use and to tell us your name and organizational affiliation.

Disclaimers and copyright information

Last updated January 17, 2008.