liu.seSearch for publications in DiVA
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Modeling Security Goals and Software Vulnerabilities
Linköping University, The Institute of Technology. Linköping University, Department of Computer and Information Science, Database and information techniques.
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, The Institute of Technology.
2011 (English)In: Dependability and Computer Engineering: Concepts for Software-Intensive Systems / [ed] Luigia Petre, Kaisa Sere, Elena Troubitsyna, IGI Global, 2011, 171-198 p.Chapter in book (Other academic)
Abstract [en]

Security is becoming recognized as an important aspect of software development, leading to the development of various security-enhancing techniques, many of which use some kind of custom modeling language. Models in different languages cannot readily be related to each other, which is an obstacle to using several techniques together. The sheer number of languages is, in itself, also an obstacle to adoption by developers.

We have developed a modeling language that can be used in place of four existing modeling languages: attack trees, vulnerability cause graphs, security activity graphs, and security goal indicator trees. Our language is more precise than earlier languages, which allows models to be used in automated applications such as testing and static analysis. Models in the new language can be transformed to and from earlier languages. We also present a data model that allows users to relate different kinds of models and model elements to each other and to core security knowledge.

Place, publisher, year, edition, pages
IGI Global, 2011. 171-198 p.
Keyword [en]
Software security, Software vulnerability, Security goal modelling, Secure software engineering
National Category
Software Engineering
Identifiers
URN: urn:nbn:se:liu:diva-72581DOI: 10.4018/978-1-60960-747-0ISBN: 978-16-0960-747-0 (print)ISBN: 1-6096-0-747-3 ISBN: e- 9781609607487 OAI: oai:DiVA.org:liu-72581DiVA: diva2:460038
Funder
EU, FP7, Seventh Framework Programme, 215995
Available from: 2011-11-29 Created: 2011-11-29 Last updated: 2015-01-08Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full textFind book in another country/Hitta boken i ett annat landfind book at a swedish library/hitta boken i ett svenskt bibliotek

Authority records BETA

Byers, DavidShahmehri, Nahid

Search in DiVA

By author/editor
Byers, DavidShahmehri, Nahid
By organisation
The Institute of TechnologyDatabase and information techniques
Software Engineering

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 236 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • oxford
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf