Vorträge und Posterpräsentationen (mit Tagungsband-Eintrag):
K. Kasal, J. Heurix, T. Neubauer:
"Model-driven Development Meets Security: An Evaluation of Current Approaches";
Vortrag: 44nd Hawaii International Conference on System Sciences (HICSS'11),
Koloa, Hawaii, USA;
04.01.2011
- 07.01.2011; in: "Proceedings of the 44nd Hawaii International Conference on System Sciences",
(2011),
S. 268.
Kurzfassung englisch:
Although our society is critically dependent on
software systems, these systems are mainly secured by
protection mechanisms during operation instead of
considering security issues during software design.
Deficiencies in software design are the main reasons for
security incidents, resulting in severe economic
consequences for (i) the organizations using the software
and (ii) the development companies. Lately, model-driven
development has been proposed in order to increase the
quality and thereby the security of software systems. This
paper evaluates current efforts that position security as a
fundamental element in model-driven development,
highlights their deficiencies and identifies current
research challenges. The evaluation shows that applying
special-purpose methods to particular aspects of the
problem is more suitable than applying generic ones,
since (i) the problem can be represented on the proper
abstraction level, (ii) the user can build on the knowledge
of experts, and (iii) the available tools are more efficient
and powerful.
"Offizielle" elektronische Version der Publikation (entsprechend ihrem Digital Object Identifier - DOI)
http://dx.doi.org/10.1109/HICSS.2011.394
Elektronische Version der Publikation:
http://publik.tuwien.ac.at/files/PubDat_198400.pdf