Home > Publications > Publikationen

Publikationen

Fockel, Markus;Merschjohann, Sven;Fazal-Baqaie, Masud:

Threat Analysis in Practice - Systematically Deriving Security Requirements.

In: 19th International Conference on Product-Focused Software Process Improvement (PROFES 2018), LNCS 11271, Nov 2018, Springer Nature Switzerland AG

Abstract

With the growing number of incidents, the topic security gains more and more attention across all domains. Organizations realize their lack of state-of-the-art security practices, however, they struggle to improve their software lifecycle in terms of security. In this talk, we introduce the concept of security by design that implements security practices within the whole software lifecycle. Based on our practical experience from industry projects in the regulated industrial automation and unregulated classical IT domain, we explain how to perform a threat analysis and how to integrate it into the software lifecycle.

Weblink

https://doi.org/10.1007/978-3-030-03673-7_25

Bibtex

@inproceedings{hniid=9834,
author = {Fockel, Markus and Merschjohann, Sven and Fazal-Baqaie, Masud},
title = {Threat Analysis in Practice - Systematically Deriving Security Requirements},
booktitle = {19th International Conference on Product-Focused Software Process Improvement (PROFES 2018)},
series = {LNCS 11271},
publisher = {Springer Nature Switzerland AG},
month = nov,
year = {2018},
}

Copy bibTeX to clipboard

Permalink

https://www.hni.uni-paderborn.de/pub/9834