Model-based security engineering: Managed co-evolution of security knowledge and software models

Research output: Chapter in book/report/conference proceedingConference contributionResearchpeer review

Authors

Research Organisations

External Research Organisations

  • TU Dortmund University
  • Fraunhofer Institute for Software and Systems Engineering (ISST)
View graph of relations

Details

Original languageEnglish
Title of host publicationFoundations of Security Analysis and Design VII
Subtitle of host publicationFOSAD 2012/2013 Tutorial Lectures
EditorsAlessandro Aldini, Javier Lopez, Fabio Martinelli
Pages34-53
Number of pages20
Volume8604
ISBN (electronic)978-3-319-10082-1
Publication statusPublished - 2014

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
PublisherSpringer Verlag
Volume8604
ISSN (Print)0302-9743
ISSN (electronic)1611-3349

Abstract

We explain UMLsec and associated techniques to incorporate security aspects in model-based development. Additionally, we show how UMLsec can be used in the context of software evolution. More precisely, we present the SecVolution approach which supports monitoring changes in external security knowledge sources (such as compliance regulations or security databases) in order to react to security related modification and to support the associated co-evolution of the UMLsec models.

ASJC Scopus subject areas

Cite this

Model-based security engineering: Managed co-evolution of security knowledge and software models. / Bürger, Jens; Jürjens, Jan; Ruhroth, Thomas et al.
Foundations of Security Analysis and Design VII: FOSAD 2012/2013 Tutorial Lectures. ed. / Alessandro Aldini; Javier Lopez; Fabio Martinelli. Vol. 8604 2014. p. 34-53 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8604).

Research output: Chapter in book/report/conference proceedingConference contributionResearchpeer review

Bürger, J, Jürjens, J, Ruhroth, T, Gärtner, S & Schneider, K 2014, Model-based security engineering: Managed co-evolution of security knowledge and software models. in A Aldini, J Lopez & F Martinelli (eds), Foundations of Security Analysis and Design VII: FOSAD 2012/2013 Tutorial Lectures. vol. 8604, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 8604, pp. 34-53. https://doi.org/10.1007/978-3-319-10082-1_2
Bürger, J., Jürjens, J., Ruhroth, T., Gärtner, S., & Schneider, K. (2014). Model-based security engineering: Managed co-evolution of security knowledge and software models. In A. Aldini, J. Lopez, & F. Martinelli (Eds.), Foundations of Security Analysis and Design VII: FOSAD 2012/2013 Tutorial Lectures (Vol. 8604, pp. 34-53). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 8604). https://doi.org/10.1007/978-3-319-10082-1_2
Bürger J, Jürjens J, Ruhroth T, Gärtner S, Schneider K. Model-based security engineering: Managed co-evolution of security knowledge and software models. In Aldini A, Lopez J, Martinelli F, editors, Foundations of Security Analysis and Design VII: FOSAD 2012/2013 Tutorial Lectures. Vol. 8604. 2014. p. 34-53. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-10082-1_2
Bürger, Jens ; Jürjens, Jan ; Ruhroth, Thomas et al. / Model-based security engineering : Managed co-evolution of security knowledge and software models. Foundations of Security Analysis and Design VII: FOSAD 2012/2013 Tutorial Lectures. editor / Alessandro Aldini ; Javier Lopez ; Fabio Martinelli. Vol. 8604 2014. pp. 34-53 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).
Download
@inproceedings{7b79fdd3b7a341eb9099644b0a001c59,
title = "Model-based security engineering: Managed co-evolution of security knowledge and software models",
abstract = "We explain UMLsec and associated techniques to incorporate security aspects in model-based development. Additionally, we show how UMLsec can be used in the context of software evolution. More precisely, we present the SecVolution approach which supports monitoring changes in external security knowledge sources (such as compliance regulations or security databases) in order to react to security related modification and to support the associated co-evolution of the UMLsec models.",
author = "Jens B{\"u}rger and Jan J{\"u}rjens and Thomas Ruhroth and Stefan G{\"a}rtner and Kurt Schneider",
year = "2014",
doi = "10.1007/978-3-319-10082-1_2",
language = "English",
isbn = "978-3-319-10081-4",
volume = "8604",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
publisher = "Springer Verlag",
pages = "34--53",
editor = "Aldini, {Alessandro } and Lopez, {Javier } and Fabio Martinelli",
booktitle = "Foundations of Security Analysis and Design VII",

}

Download

TY - GEN

T1 - Model-based security engineering

T2 - Managed co-evolution of security knowledge and software models

AU - Bürger, Jens

AU - Jürjens, Jan

AU - Ruhroth, Thomas

AU - Gärtner, Stefan

AU - Schneider, Kurt

PY - 2014

Y1 - 2014

N2 - We explain UMLsec and associated techniques to incorporate security aspects in model-based development. Additionally, we show how UMLsec can be used in the context of software evolution. More precisely, we present the SecVolution approach which supports monitoring changes in external security knowledge sources (such as compliance regulations or security databases) in order to react to security related modification and to support the associated co-evolution of the UMLsec models.

AB - We explain UMLsec and associated techniques to incorporate security aspects in model-based development. Additionally, we show how UMLsec can be used in the context of software evolution. More precisely, we present the SecVolution approach which supports monitoring changes in external security knowledge sources (such as compliance regulations or security databases) in order to react to security related modification and to support the associated co-evolution of the UMLsec models.

UR - http://www.scopus.com/inward/record.url?scp=84927662814&partnerID=8YFLogxK

U2 - 10.1007/978-3-319-10082-1_2

DO - 10.1007/978-3-319-10082-1_2

M3 - Conference contribution

AN - SCOPUS:84927662814

SN - 978-3-319-10081-4

VL - 8604

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 34

EP - 53

BT - Foundations of Security Analysis and Design VII

A2 - Aldini, Alessandro

A2 - Lopez, Javier

A2 - Martinelli, Fabio

ER -

By the same author(s)

  1. Supporting Value-Aware Software Engineering Through Traceability and Value Tactics

    Research output: Chapter in book/report/conference proceedingConference contributionResearchpeer review

  2. Organizing Graphical User Interface tests from behavior‐driven development as videos to obtain stakeholders' feedback

    Research output: Contribution to journalArticleResearchpeer review

  3. What you see is what you trace: a two-stage interview study on traceability practices and eye tracking potential

    Research output: Contribution to journalArticleResearchpeer review

  4. Paving the Way Towards an Effective Vision Video Usage: An Exploratory Study

    Research output: Chapter in book/report/conference proceedingConference contributionResearchpeer review

  5. Human factors in model-driven engineering: future research goals and initiatives for MDE

    Research output: Contribution to journalArticleResearchpeer review