seceng-course-exp-2013
This is an old revision of the document!
A Replicated Experiment on Comparing Textual vs Visual Methods for Security Risk Assessment
The goal of the experiment we want to conduct following the goal/question/metric (GQM) template was to compare visual and textual methods for security risk assessment methods with respect to how successful they are in identifying threats and security controls. The context of the experiment consists of security requirements engineers who identify a list of security requirements for an advanced metering infrastructure scenario from the Smart Grid domain.
Supplement Materials
During the experiment we distributed among participants two type of questionnaires:
- Pre-task questionnaire to collect some information about participants and thier background: Q1.
- Post-task questionnaire to collect participants' perception of methods: Q2.
For individual interview we used the following interview guide: guide.
seceng-course-exp-2013.1395750905.txt.gz · Last modified: 2021/01/29 10:58 (external edit)