Incorporating Information Assurance in Systems Analysis and Design Curricula

The importance of teaching information assurance (IA) is now widely recognized. Universities teach the technology and tactics for detecting and preventing attacks on our systems. Hardware and software engineers are moving deliberately to increase capabilities in secure systems. Ultimately, however, these groups implement design specifications that began as an analysis of a business need or opportunity. Separate surveys of IS faculty and students reveal a recognition by both groups that IA design is critical and will be important to future employers. This paper discusses the dichotomy between existing systems analysis and design (SA&D) principles as depicted in many popular textbooks with the emerging need for secure information systems design. A review of 16 SA&D textbooks illustrates that although they provide a good foundation for the design process, they rarely include more than a page or two on IA considerations. Incorporating IA in systems analysis and design is no longer an option for our students. IS faculty must provide the formal curriculum for proper application of IA technologies in final systems implementation. We propose embedding IA in all sections of SA&D curricula, and provide a description of our approach to testing a methodology we are developing for secure SA&D courses.

[1]  Alan R. Dennis,et al.  Systems Analysis and Design with UML Version 2.0: An Object-Oriented Approach , 2007 .

[2]  John W. Satzinger,et al.  Systems Analysis and Design in a Changing World , 2000 .

[3]  Jim Arlow,et al.  Uml and the Unified Process: Practical Object-Oriented Analysis and Design , 2005 .

[4]  Alan Dennis Systems Analysis Design , 2006 .

[5]  Edward Yourdon,et al.  Object-oriented analysis , 2012 .

[6]  Julie E. Kendall,et al.  Systems analysis and design , 1981 .

[7]  Julie E. Kendall,et al.  Systems analysis and design (2nd ed.) , 1992 .

[8]  Julie E. Kendall,et al.  Systems Analysis and Design (6th Edition) , 2004 .

[9]  James A. Senn,et al.  Analysis and Design of Information Systems , 1984 .

[10]  Peter P. Chen The entity-relationship model: toward a unified view of data , 1975, VLDB '75.

[11]  Lavette C. Teague,et al.  Teaching Object-Oriented Systems Analysis and Design with UML , 2005 .

[12]  James E. Rumbaugh,et al.  Object-Oriented Modeling and Design with UML , 2004 .

[13]  Mike O'Docherty,et al.  Object-Oriented Analysis and Design: Understanding System Development with UML 2.0 , 2005 .

[14]  Edward Yourdon,et al.  Object-oriented design , 1991, Yourdon Press Computing Series.

[15]  Grady Booch,et al.  Object-Oriented Analysis and Design with Applications , 1990 .

[16]  Edward Yourdon,et al.  Object-oriented analysis (2nd ed.) , 1991 .

[17]  Jeffrey L. Whitten,et al.  Systems Analysis and Design Methods , 1986 .

[18]  David Harris Systems analysis and design: for the small enterprise , 1999 .

[19]  Grady Booch,et al.  Object-oriented analysis and design with applications (2nd ed.) , 1993 .

[20]  Yun-Tung Lau The Art Of Objects: Object-Oriented Design And Architecture , 2000 .

[21]  Judson R Ostle Information Systems Analysis and Design , 1985 .

[22]  Joey F. George,et al.  Modern Systems Analysis and Design , 1996 .

[23]  John W. Satzinger,et al.  Object-Oriented Analysis and Design with the Unified Process , 2004 .

[24]  David W. Embley,et al.  Object-oriented systems analysis - a model-driven approach , 1991, Yourdon Press Computing series.

[25]  William E. Lorensen,et al.  Object-Oriented Modeling and Design , 1991, TOOLS.

[26]  Gurpreet Dhillon,et al.  Synthesizing Information System Design Ideals to Overcome Developmental Duality in Securing Information Systems , 2005, Proceedings of the 38th Annual Hawaii International Conference on System Sciences.

[27]  James Martin,et al.  Object-oriented analysis and design , 1992 .

[28]  Stephen R. Schach Introduction to Object-Oriented Systems Analysis and Design with Uml and the Unified Process , 2003 .

[29]  Joey F. George,et al.  Essentials of Systems Analysis and Design , 2000 .

[30]  Gary B. Shelly,et al.  Systems Analysis and Design , 1991 .