DOSSPRE

Dataset of Students’ Software Projects Requirements. The dataset has 1317 software requirements, distributed as 801 Non Security Requirements (NSR) and 516 Security Requirements (SR) constituting about 61% and 39% of the dataset respectively. The requirements were harvested from 105 students projects. Besides the original dataset, there are other 2 versions of it, one labelled for binary classification that is NSR and SR and another for multiclass classification. The later has labels in the following categories Classification for Non-Security Requirements (NSR) include Functional, Usability, Portability, Performance Requirements while Security Requirements (SR) include Availability (AVA), Authentication (THE), Authorization (THO), Immunity (IMM), Integrity (INT), Intrusion detection (IND), Confidentiality (CON), Auditing (AUD), Survivability (SUR) and Maintainability (MAI). Software Maintenance is a process that can not be avoided in the lifetime of a software product. Thus, the idea being exposed is the need to include Maintainability as a Security Requirement to prevent introduction of software vulnerabilities every time there are changes to be made to software.

学生软件项目需求数据集。该数据集共包含1317条软件需求，其中非安全需求（Non Security Requirements, NSR）801条、安全需求（Security Requirements, SR）516条，分别占数据集总规模的约61%与39%。这些需求采集自105个学生软件项目。除原始数据集外，该数据集还包含两个衍生版本：一个为二分类任务标注版，标签为NSR与SR；另一个为多分类任务标注版。该多分类版本的标签类别如下：非安全需求（NSR）涵盖功能需求、可用性需求、可移植性需求与性能需求；安全需求（SR）则包含可用性（Availability, AVA）、认证（Authentication, THE）、授权（Authorization, THO）、抗攻击性（Immunity, IMM）、完整性（Integrity, INT）、入侵检测（Intrusion Detection, IND）、机密性（Confidentiality, CON）、审计（Auditing, AUD）、生存性（Survivability, SUR）与可维护性（Maintainability, MAI）。软件维护是软件产品全生命周期中不可规避的流程，据此本数据集旨在阐明将可维护性纳入安全需求范畴的必要性，以避免在软件变更过程中引入安全漏洞。