Extracting Software Security Concerns of Problem Frames Based on a Mapping Study

Context: Although the security of software development has been extensively studied, it has little empirical knowledge about the security aspect during software development. And also Problem Frames provides a systematic way for analysing requirement, but it also lacks empirical evidence.Objectives: In order to design security enhancement pattern for system, we combined security concerns with problem frames.Method: We performed a comprehensive mapping study to extract the security indexes and security concerns from the categorized papers.Results: We identified 406 candidate papers, of these, 184 articles generated security indexes, and 18 articles generated security concerns. According to the meaning of each security index, we matched security concerns for them. Furthermore, security concerns are applied to the domain of the problem frames.Conclusions: Through applying a mapping study, we extracted 3 security indexes and 4 security concerns. And we analysed how these concerns matched to the Problem Frames.