Towards an integrated framework for model-driven security engineering

J. Cabot; N. Zannone

Towards an integrated framework for model-driven security engineering

J. Cabot, N. Zannone

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

6 Citations (Scopus)

2 Downloads (Pure)

Abstract

Security is a major issue in developing software systems. It is widely recognized that security aspects must be considered in all the phases of the development process from the analysis of the organizational context to the final implementation of the software system. However, current approaches for designing secure systems only target particular security aspects at specic stages of the development process. A unied process combining these different approaches is still missing. This paper surveys several existing techniques and discuss the need of a general framework for integrating them into a single development process.

Original language	English
Title of host publication	Proceedings of the 1st Modeling Security Workshop (MODSEC'08, Toulouse, France, September 28, 2008; co-located with MODELS'08)
Editors	J. Whittle, J. Jürjens, B. Nuseibeh, G. Dobson
Publisher	CEUR-WS.org
Pages	10-
Publication status	Published - 2008

Publication series

Name	CEUR Workshop Proceedings
Volume	413
ISSN (Print)	1613-0073

Cite this

@inproceedings{039b8e7887fa43f8a276b2562204c36c,

title = "Towards an integrated framework for model-driven security engineering",

abstract = "Security is a major issue in developing software systems. It is widely recognized that security aspects must be considered in all the phases of the development process from the analysis of the organizational context to the final implementation of the software system. However, current approaches for designing secure systems only target particular security aspects at specic stages of the development process. A unied process combining these different approaches is still missing. This paper surveys several existing techniques and discuss the need of a general framework for integrating them into a single development process.",

author = "J. Cabot and N. Zannone",

year = "2008",

language = "English",

series = "CEUR Workshop Proceedings",

publisher = "CEUR-WS.org",

pages = "10--",

editor = "J. Whittle and J. J{\"u}rjens and B. Nuseibeh and G. Dobson",

booktitle = "Proceedings of the 1st Modeling Security Workshop (MODSEC'08, Toulouse, France, September 28, 2008; co-located with MODELS'08)",

}

Towards an integrated framework for model-driven security engineering. / Cabot, J.; Zannone, N.

Proceedings of the 1st Modeling Security Workshop (MODSEC'08, Toulouse, France, September 28, 2008; co-located with MODELS'08). ed. / J. Whittle; J. Jürjens; B. Nuseibeh; G. Dobson. CEUR-WS.org, 2008. p. 10- (CEUR Workshop Proceedings; Vol. 413).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Towards an integrated framework for model-driven security engineering

AU - Cabot, J.

AU - Zannone, N.

PY - 2008

Y1 - 2008

N2 - Security is a major issue in developing software systems. It is widely recognized that security aspects must be considered in all the phases of the development process from the analysis of the organizational context to the final implementation of the software system. However, current approaches for designing secure systems only target particular security aspects at specic stages of the development process. A unied process combining these different approaches is still missing. This paper surveys several existing techniques and discuss the need of a general framework for integrating them into a single development process.

AB - Security is a major issue in developing software systems. It is widely recognized that security aspects must be considered in all the phases of the development process from the analysis of the organizational context to the final implementation of the software system. However, current approaches for designing secure systems only target particular security aspects at specic stages of the development process. A unied process combining these different approaches is still missing. This paper surveys several existing techniques and discuss the need of a general framework for integrating them into a single development process.

M3 - Conference contribution

T3 - CEUR Workshop Proceedings

SP - 10-

BT - Proceedings of the 1st Modeling Security Workshop (MODSEC'08, Toulouse, France, September 28, 2008; co-located with MODELS'08)

A2 - Whittle, J.

A2 - Jürjens, J.

A2 - Nuseibeh, B.

A2 - Dobson, G.

PB - CEUR-WS.org

ER -

Towards an integrated framework for model-driven security engineering

Abstract

Publication series

Fingerprint

Cite this