Building trustworthy requirements specification is difficult for its inherent complexity and interdisciplinary of requirements engineering and security. This paper deals with two challenges: (1) nonstandard architecture and definition of trustworthy attributes and (2) the inadequacy existing methodologies to support obtaining implicit trustworthy requirements. This paper proposed a trustworthy requirements elicitation model called TruReq, which mainly combines three components: Trustworthy Decomposition Tree (TDT), Correlation Matrix (CM), and Priority Vector of Trustworthy Attributes (PV). The TDT is built based on the ISO14508 Common Criteria (CC) and ISO25010:2011 to organize trustworthy attributes systematically, the CM is constructed based on fuzzy set theory to quantify dependencies between trustworthy attributes, and PV is generated by applying FQQSIG model to resolve the potential conflicts. The integrated model supports heuristics requirements' refinement guided by TDT, the ability to finding implicit trustworthy requirements based on CM, and decision-making for conflicting requirements according to PV. A case referring to e-commerce is clarified to verify the feasibility of this model. The case study shows that the TruReq model can efficiently guide the trustworthy requirements elicitation and locate the conflicts among them.

• 出版日期2012