Orchestrating security and system engineering for evolving systems (invited paper)

F. Massacci; F. Bouquet; E. Fourneret; J. Jurjens; M.S. Lund; S. Madelénat; J. Muehlberg; F. Paci; S. Paul; F. Piessens; B. Solhaug; S. Wenzel

doi:10.1007/978-3-642-24755-2_12

Orchestrating security and system engineering for evolving systems (invited paper)

F. Massacci, F. Bouquet, E. Fourneret, J. Jurjens, M.S. Lund, S. Madelénat, J. Muehlberg, F. Paci, S. Paul, F. Piessens, B. Solhaug, S. Wenzel

Computer Systems

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

Abstract

How to design a security engineering process that can cope with the dynamic evolution of Future Internet scenarios and the rigidity of existing system engineering processes? The SecureChange approach is to orchestrate (as opposed to integrate) security and system engineering concerns by two types of relations between engineering processes: (i) vertical relations between successive security-related processes; and (ii) horizontal relations between mainstream system engineering processes and concurrent security-related processes. This approach can be extended to cover the complete system/ software lifecycle, from early security requirement elicitation to runtime configuration and monitoring, via high-level architecting, detailed design, development, integration and design-time testing. In this paper we illustrate the high-level scientific principles of the approach. © 2011 Springer-Verlag.

Original language	English
Title of host publication	Towards a Service-Based Internet
Subtitle of host publication	4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings
Editors	Witold Abramowicz, Ignacio M. Llorente, Mike Surridge, Andrea Zisman, Julien Vayssière
Publisher	Springer
Pages	134-143
Number of pages	10
ISBN (Electronic)	9783642247552
ISBN (Print)	9783642247545
DOIs	https://doi.org/10.1007/978-3-642-24755-2_12
Publication status	Published - 2011
Event	4th European Conference on Towards a Service-Based Internet, ServiceWave 2011 - , Poland Duration: 26 Oct 2011 → 28 Oct 2011

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	LNCS 6994
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	4th European Conference on Towards a Service-Based Internet, ServiceWave 2011
Country/Territory	Poland
Period	26/10/11 → 28/10/11

VU Research Profile

Connected World

Access to Document

10.1007/978-3-642-24755-2_12

Persistent URL (handle)

Persistent link

Cite this

Massacci, F., Bouquet, F., Fourneret, E., Jurjens, J., Lund, M. S., Madelénat, S., Muehlberg, J., Paci, F., Paul, S., Piessens, F., Solhaug, B., & Wenzel, S. (2011). Orchestrating security and system engineering for evolving systems (invited paper). In W. Abramowicz, I. M. Llorente, M. Surridge, A. Zisman, & J. Vayssière (Eds.), Towards a Service-Based Internet: 4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings (pp. 134-143). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. LNCS 6994). Springer. https://doi.org/10.1007/978-3-642-24755-2_12

Massacci, F. ; Bouquet, F. ; Fourneret, E. et al. / Orchestrating security and system engineering for evolving systems (invited paper). Towards a Service-Based Internet: 4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings. editor / Witold Abramowicz ; Ignacio M. Llorente ; Mike Surridge ; Andrea Zisman ; Julien Vayssière. Springer, 2011. pp. 134-143 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{8dae8eda93ec4521998a990b2f0cc674,

title = "Orchestrating security and system engineering for evolving systems (invited paper)",

abstract = "How to design a security engineering process that can cope with the dynamic evolution of Future Internet scenarios and the rigidity of existing system engineering processes? The SecureChange approach is to orchestrate (as opposed to integrate) security and system engineering concerns by two types of relations between engineering processes: (i) vertical relations between successive security-related processes; and (ii) horizontal relations between mainstream system engineering processes and concurrent security-related processes. This approach can be extended to cover the complete system/ software lifecycle, from early security requirement elicitation to runtime configuration and monitoring, via high-level architecting, detailed design, development, integration and design-time testing. In this paper we illustrate the high-level scientific principles of the approach. {\textcopyright} 2011 Springer-Verlag.",

author = "F. Massacci and F. Bouquet and E. Fourneret and J. Jurjens and M.S. Lund and S. Madel{\'e}nat and J. Muehlberg and F. Paci and S. Paul and F. Piessens and B. Solhaug and S. Wenzel",

year = "2011",

doi = "10.1007/978-3-642-24755-2\_12",

language = "English",

isbn = "9783642247545",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "134--143",

editor = "Witold Abramowicz and Llorente, \{Ignacio M.\} and Mike Surridge and Andrea Zisman and Julien Vayssi{\`e}re",

booktitle = "Towards a Service-Based Internet",

note = "4th European Conference on Towards a Service-Based Internet, ServiceWave 2011 ; Conference date: 26-10-2011 Through 28-10-2011",

}

Massacci, F, Bouquet, F, Fourneret, E, Jurjens, J, Lund, MS, Madelénat, S, Muehlberg, J, Paci, F, Paul, S, Piessens, F, Solhaug, B & Wenzel, S 2011, Orchestrating security and system engineering for evolving systems (invited paper). in W Abramowicz, IM Llorente, M Surridge, A Zisman & J Vayssière (eds), Towards a Service-Based Internet: 4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. LNCS 6994, Springer, pp. 134-143, 4th European Conference on Towards a Service-Based Internet, ServiceWave 2011, Poland, 26/10/11. https://doi.org/10.1007/978-3-642-24755-2_12

Orchestrating security and system engineering for evolving systems (invited paper). / Massacci, F.; Bouquet, F.; Fourneret, E. et al.
Towards a Service-Based Internet: 4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings. ed. / Witold Abramowicz; Ignacio M. Llorente; Mike Surridge; Andrea Zisman; Julien Vayssière. Springer, 2011. p. 134-143 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. LNCS 6994).

Research output: Chapter in Book / Report / Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Orchestrating security and system engineering for evolving systems (invited paper)

AU - Massacci, F.

AU - Bouquet, F.

AU - Fourneret, E.

AU - Jurjens, J.

AU - Lund, M.S.

AU - Madelénat, S.

AU - Muehlberg, J.

AU - Paci, F.

AU - Paul, S.

AU - Piessens, F.

AU - Solhaug, B.

AU - Wenzel, S.

PY - 2011

Y1 - 2011

N2 - How to design a security engineering process that can cope with the dynamic evolution of Future Internet scenarios and the rigidity of existing system engineering processes? The SecureChange approach is to orchestrate (as opposed to integrate) security and system engineering concerns by two types of relations between engineering processes: (i) vertical relations between successive security-related processes; and (ii) horizontal relations between mainstream system engineering processes and concurrent security-related processes. This approach can be extended to cover the complete system/ software lifecycle, from early security requirement elicitation to runtime configuration and monitoring, via high-level architecting, detailed design, development, integration and design-time testing. In this paper we illustrate the high-level scientific principles of the approach. © 2011 Springer-Verlag.

AB - How to design a security engineering process that can cope with the dynamic evolution of Future Internet scenarios and the rigidity of existing system engineering processes? The SecureChange approach is to orchestrate (as opposed to integrate) security and system engineering concerns by two types of relations between engineering processes: (i) vertical relations between successive security-related processes; and (ii) horizontal relations between mainstream system engineering processes and concurrent security-related processes. This approach can be extended to cover the complete system/ software lifecycle, from early security requirement elicitation to runtime configuration and monitoring, via high-level architecting, detailed design, development, integration and design-time testing. In this paper we illustrate the high-level scientific principles of the approach. © 2011 Springer-Verlag.

UR - https://www.scopus.com/pages/publications/80054083164

UR - https://www.scopus.com/inward/citedby.url?scp=80054083164&partnerID=8YFLogxK

U2 - 10.1007/978-3-642-24755-2_12

DO - 10.1007/978-3-642-24755-2_12

M3 - Conference contribution

SN - 9783642247545

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 134

EP - 143

BT - Towards a Service-Based Internet

A2 - Abramowicz, Witold

A2 - Llorente, Ignacio M.

A2 - Surridge, Mike

A2 - Zisman, Andrea

A2 - Vayssière, Julien

PB - Springer

T2 - 4th European Conference on Towards a Service-Based Internet, ServiceWave 2011

Y2 - 26 October 2011 through 28 October 2011

ER -

Massacci F, Bouquet F, Fourneret E, Jurjens J, Lund MS, Madelénat S et al. Orchestrating security and system engineering for evolving systems (invited paper). In Abramowicz W, Llorente IM, Surridge M, Zisman A, Vayssière J, editors, Towards a Service-Based Internet: 4th European Conference, ServiceWave 2011, Poznan, Poland, October 26-28, 2011. Proceedings. Springer. 2011. p. 134-143. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-642-24755-2_12

Orchestrating security and system engineering for evolving systems (invited paper)

Abstract

Publication series

Conference

VU Research Profile

Access to Document

Persistent URL (handle)

Other files and links

Fingerprint

Cite this