A fuzzy TOPSIS based analysis toward selection of effective security requirements engineering approach for trustworthy healthcare software development

Today's healthcare organizations want to implement secure and quality healthcare software as cyber-security is a significant risk factor for healthcare data. Considering security requirements during trustworthy healthcare software development process is an essential part of the quality software...

Full description

Saved in:
Bibliographic Details
Published in:BMC medical informatics and decision making 2020-09, Vol.20 (1), p.236-236, Article 236
Main Authors: Ansari, Md Tarique Jamal, Al-Zahrani, Fahad Ahmed, Pandey, Dhirendra, Agrawal, Alka
Format: Article
Language:English
Subjects:
Computer programs
Cybersecurity
Data integrity
Data security
Decision making
Delivery of Health Care
Fuzzy Logic
Fuzzy TOPSIS
Health care
Health Facilities
Health informatics
Healthcare application
Healthcare industry software
Humans
Malware
Methods
Multiple criterion
Privacy
Quality software development
Risk analysis
Risk factors
Security
Security management
Security requirements
Software
Software development
Software engineering
Software security
Trustworthiness
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Today's healthcare organizations want to implement secure and quality healthcare software as cyber-security is a significant risk factor for healthcare data. Considering security requirements during trustworthy healthcare software development process is an essential part of the quality software development. There are several Security Requirements Engineering (SRE) methodologies, framework, process, standards available today. Unfortunately, there is still a necessity to improve these security requirements engineering approaches. Determining the most suitable security requirements engineering method for trustworthy healthcare software development is a challenging process. This study is aimed to present security experts' perspective on the relative importance of the criteria for selecting effective SRE method by utilizing the multi-criteria decision making methods. The study was planned and conducted to identify the most appropriate SRE approach for quality and trustworthy software development based on the security expert's knowledge and experience. The hierarchical model was evaluated by using fuzzy TOPSIS model. Effective SRE selection criteria were compared in pairs. 25 security experts were asked to response the pairwise criteria comparison form. The impact of the recognized selection criteria for effective security requirements engineering approaches has been evaluated quantitatively. For each of the 25 participants, comparison matrixes were formed based on the scores of their responses in the form. The consistency ratios (CR) were found to be smaller than 10% (CR = 9.1% 
ISSN:1472-6947
1472-6947
DOI:10.1186/s12911-020-01209-8