Developing Secure Networked Web-Based Systems Using Model-based Risk Assessment and UMLsec

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Siv Hilde Houmb Articles by Jan J?rjens

10th Asia-Pacific Software Engineering Conference (APSEC'03)

Chiang Mai, Thailand

December 10-December 12

ISBN: 0-7695-2011-1

	ASCII Text	x
	Siv Hilde Houmb, Jan J?rjens, "Developing Secure Networked Web-Based Systems Using Model-based Risk Assessment and UMLsec," Asia-Pacific Software Engineering Conference, pp. 488, 10th Asia-Pacific Software Engineering Conference (APSEC'03), 2003.

	BibTex	x
	@article{ 10.1109/APSEC.2003.1254404, author = {Siv Hilde Houmb and Jan J?rjens}, title = {Developing Secure Networked Web-Based Systems Using Model-based Risk Assessment and UMLsec}, journal ={Asia-Pacific Software Engineering Conference}, volume = {0}, year = {2003}, isbn = {0-7695-2011-1}, pages = {488}, doi = {http://doi.ieeecomputersociety.org/10.1109/APSEC.2003.1254404}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Asia-Pacific Software Engineering Conference TI - Developing Secure Networked Web-Based Systems Using Model-based Risk Assessment and UMLsec SN - 0-7695-2011-1 SP EP A1 - Siv Hilde Houmb, A1 - Jan J?rjens, PY - 2003 KW - null VL - 0 JA - Asia-Pacific Software Engineering Conference ER -

Siv Hilde Houmb, Department of Computer and Information Science

Jan J?rjens, Systems Engineering, TU Munich

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/APSEC.2003.1254404

Despite a growing awareness of security issues in networked computing systems, most development processes used today still do not take security aspects into account. To address this problem, we designed a process for developing secure networked systems based on the extension of the Unified Modeling Language (UML) for secure systems development UMLsec and on the concept of model-based risk assessment (MBRA). Enterprise information such as security policies, business goals, policies and processes are supported through activities in the model-based integrated development process. These are then refined to security requirements at a more technical level, which can be expressed using UMLsec, and which can be analysed mechanically using the tool-support for UMLsec.

Citation:

Siv Hilde Houmb, Jan J?rjens, "Developing Secure Networked Web-Based Systems Using Model-based Risk Assessment and UMLsec," apsec, pp.488, 10th Asia-Pacific Software Engineering Conference (APSEC'03), 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.