International Journal of Computer Applications (0975 – 8887) Volume 111 – No 9, February 2015 35 Quality Assurance of Security Requirement Engineering in Socio- Technical Systems Rida Zainab Fatima Jinnah Women University Rawalpindi, Pakistan Sundas Ashfaq Fatima Jinnah Women University Rawalpindi, Pakistan Mehreen Sirshar Fatima Jinnah Women University Rawalpindi, Pakistan ABSTRACT Quality assurance is a continuous process to check whether specified requirements are being fulfilled by a system or service. Quality assurance checks for the defects before they get into the final product. In this research a comprehensive survey of various literatures has been carried out to ensure quality standards. Different quality assurance techniques have been employed in this research that help in improving the quality of the socio technical systems from the perspective of security requirement engineering. The analysis of various type of literature reveals that after applying techniques presented in the literature review shows improvement in the performance of the socio technical systems. Tropos, SeeCo (Security via commitments), formative user centered evaluation technique, three-layer framework, Si*(Secure i*) ontology are the different techniques discussed throughout the research that ensures the quality standards. Some of the quality evaluation tools like STS- tool and STS-ml are also used in the research for quality assurance. This research also assesses the improvements of security requirement engineering in socio technical systems after applying Quality evaluation techniques. General Terms Quality Assurance, Socio technical systems, Tropos, SeeCo (Security via commitments), Si*(Secure i*) ontology, Security Requirement Engineering Keywords: Quality Assurance, Socio technical systems, Tropos, SeeCo (Security via commitments), Si*(Secure i*) ontology, Security Requirement Engineering 1. INTRODUCTION Quality guarantee is important for the achievement of the system and to achieve the excellence that essential for going to the new or next level of controlling. It is necessary to check whether a system amenities being developed is meeting identified requirements or not and to guarantee that Quality is consistently upgraded. The increasing demand of Quality products in worldwide market enforced organizations to emphasis on Quality. International Organization for Standardization (ISO) 9000 is a worldwide standard that many organizations used to confirm that their Quality guarantee product is in place and operative. Conformance to ISO 9000 is said to assure that an organizations supplies Quality products and facilities. The ISO 9000 states several features of quality controlling and includes some of ISO’s best standards. ISO 9001:2008 defines the requirements of a Quality controlling appliances[23]. ISO 9000:2005 includes the simple ideas and linguistic. ISO 9004:2009 gives importance on how to make a Quality controlling appliances more efficient and effective. ISO 19011:2011 states direction on inner and outer reviews of Quality controlling appliances[23]. It was found that socio technical system significantly contributed in our daily life so quality of this system are important for the advancement of social life. The aim of this survey research is to establish that how much Quality parameters especially security and safety are important in socio technical systems. During our survey different authors have discussed different quality parameters in order to ensure quality in the system which are; performance, scalability, extendibility, reusability, efficiency, portability, effectiveness, verification, validation, maintainability and ease of use etc. The paper is organized as follows: Section 2 discusses the various Quality Assurance techniques and tools presented in different research papers used in the requirement engineering process of socio technical systems. Comprehensive analysis of described techniques discussed in Section 3. Section 4 concludes the study. 2. QUALITY ASSURANCE TECHNIQUES IN DIFFERENT RESEARCH PAPERS FOR REQUIREMENT ENGINEERING OF SOCIO-TECHNICAL SYSTEMS 2.1. Applying Tropos to Socio- Technical System Design and Runtime Configuration[1] In socio technical systems, human agents are also an integral part of a system along with hardware and software. In this paper a number of tropos features are discussed which are important for the design and development of STS’s. Risk analysis and local variability are the two critical design issues that are focused in this paper and also how they are integrated and evaluated in choosing the best design alternative is explained. Finally the runtime self- reconfiguration is also discussed. The methodology used in this paper is tropos i.e. agent oriented software engineering methodology [1] which models the system as set of interacting agents. Goal Risk framework and location variability are the additional techniques used along with tropos. Goal risk framework minimizes the risk and location variability relates to the location where an agent is situated at runtime. The advantages of this paper are that we can prevent the system from violating the requirements. We can also minimize the risk as much as possible. The disadvantage is that the design and runtime properties of system present a lot of challenges and therefore there is a clear need of engineering tools and techniques.The approaches described in this paper are applicable on all type of real time safety critical systems.