Abstract
To realize secure system development by considering attackers for actors, we proposed a security requirements analysis method based on the Actor Relationship Matrix (SARM). The proposed method is able to convert ARM into SD diagram of i* of Liu method for security. We proposed a spiral review process based on SARM and i* framework of Liu method as a combination of these methods as well. In this paper, we show perspective model of SARM that was not stated clearly in the previous paper. At first we show i*, i*-Liu method, Actor Relationship Matrix and SARM. In addition, there are an owner, a countermeasure, weakness, a risk, assets, a menace agent, a menace in security concepts, I state a description method of these concepts by SARM clearly. Next, we propose a complete set of SARM that are AA (Asset×Attack) table, SARM_A (Attack) table, SARM_B (Branch) table, SARM_C (Countermeasure), SARM_D (Design) table. As SARM_C table, SARM_D table, we show the description of countermeasures and procedures of SARM newly. The Application Method of SARM based on CC is considered.
