Model-based Security Engineering for Secure Systems Development

Conference: ARCS Workshop 2018 - 31th International Conference on Architecture of Computing Systems
04/09/2018 - 04/12/2018 at Braunschweig, Germany

Proceedings: ARCS Workshop 2018

Pages: 10Language: englishTyp: PDF

Personal VDE Members are entitled to a 10% discount on this title

Lunkeit, Armin (OpenLimit SignCubes GmbH, Berlin, Germany)
Pohl, Hartmut (softScheck GmbH, Sankt Augustin, Germany)

Security of software and systems is becoming more and more important in the context of the rapid rise of distributed communication systems and their use into the private life of each individual. The development of new software is also accompanied by an immense time and cost pressure. The aspects of IT-security are therefore often not considered within the software development process. The aim of this work is to contribute to the improvement of the integration of security engineering into software engineering. A model-based approach for determination of assets, security objectives, threats, and attacks is presented. The derivation of functional requirements for the software development process from these artefacts is explained.