Page Operations
Browse Space
All rights for materials have been researved by the auther.
GRACE SYMPOSIUM on Security, Safety and Dependability for Software Engineering
- Time: 13:30-17:30, 16 April 2008
- Place: Conference Room(1208) on 12F, NII
Programme:
13:00- Registration Desk Open at 1208 room
13:30- Welcome and Introduction to GRACE Center and SSE Project
- presentation slides: GRACE
, Research, SSE Project
14:00- Title: SECURITY BEYOND ENCRYPTION – Privacy Safety Understandability Usability –
- Speaker: Donald C. Gause, State University of New York, USA
14:30- Title: Patents, Software and a Secure World
- Speaker: Kevin Ryan, The Irish Software Engineering Research Centre, Ireland
- presentation slides
15:00- Title: Elaborating Security Requirements by Analysis of Malicious Anti-Models
- Speaker: Axel van Lamsweerde, Universite' catholique de Louvain (UCL), Belgium
- presentation slides
15:30- <Break>
16:00- Title: Risk-driven information security management: Three projects
- Speaker: Roel Wieringa, the University of Twente, Netherlands
- presentation slides
16:30- Title: A Risk-Based, Value-Oriented Approach to Quality Requirements
- Speaker: Martin Glinz, University of Zurich, Switzerland
- materials(attendees only)
17:00- Title: Towards Robust Self-Managed Systems
- Speaker: Jeff Kramer, Imperial College London, UK
- presentation slides
17:30- Closing
Detailed Information:
Title: SECURITY BEYOND ENCRYPTION – Privacy Safety Understandability Usability –
Speacker: Donald C. Gause, State University of New York, USA
Abstract:
In this presentation, we take a brief look at computer security from the perspective of systems privacy, safety, understandability and usability. We explore security issues occurring from design and organizational decisions in the absence of explicit user and attribute definition and analysis. We look at consequences, leading in some cases, to potentially serious security weaknesses and, in other cases, to lost product opportunity. We draw anecdotally from recent, specific incidents in medical application and global finance software development. We make the claim that computer security must be viewed as an integral part of the design of computer systems and therefore incorporated throughout the design process - from business requirements through functional specifications, systems integration, testing, delivery, and maintenance.
Biography:
Donald C. Gause, Research Professor, Department of Bioengineering, Thomas J. Watson School of Engineering, Binghamton University of the State University of New York. Don has worked as an engineer, programmer and manager of engineering, programming and education groups within General Motors and IBM. He has been active as a consultant and professor for the past 40 years and served for several years as an adjunct member of IBM's Systems Research Institute (SRI). He has been a visiting scholar and has lectured at many universities and institutes around the world, has been an associate editor of the International Journal of Cybernetics and Systems, and has served as a national lecturer for a number of computer and engineering professional societies. He is currently a member of the editorial board of the Requirements Engineering Journal.
Title: Patents, Software and a Secure World
Speaker: Kevin Ryan, Centre Director of Lero (The Irish Software Engineering Research Centre)
Abstract(tentative):
The world's security relies increasingly on globally developed and deployed software systems. Recent trends in software IPR protection have resulted in fundamental questioning of the patent process, especially in
the US. At the same time concerns over the global regulation of IP have become a hot topic for many developing countries. This talk summarises some of the concerns and suggests that radical solutions may be needed.
Biography(tentative):
Kevin Ryan is the Centre Director of Lero (The Irish Software Engineering Research Centre). Lero is the national software engineering research centre with a presence in four leading
universities. His research interests, over the past 20 years, have been in the general field of software engineering and in particular in design methods, programming environments, requirements capture and the
software process. He was involved in significant Esprit Projects in the area of software methods and tools, ToolUse (project 510) from 1985 to 1989 and Atmosphere (project 2365) from May1989 to July 1992. From 1999 to 2004 he led a group of Irish board researchers with the goal of establishing a national Software Engineering Research Centre. Prior to becoming Centre Director for Lero, he was Vice President Academic and Registrar of the University of Limerick (1999-2004) and founding Dean of the College of Informatics and Electronics (1994-1999). See also http://www.staff.ul.ie/kevinryan/
Title: Elaborating Security Requirements by Analysis of Malicious Anti-Models
Speaker: Axel van Lamsweerde, Universite' catholique de Louvain (UCL), Belgium
Abstract:
The talk will discuss techniques for elaborating security goals and analyzing them against intentional or unintentional threats. In particular, intentional threats require hostile environments to be modelled in terms of anti-goals, knowledge, and capabilities of attackers. Threat graphs can be built systematically through anti-goal refinement until leaf nodes are derived that are software vulnerabilities or anti-requirements monitorable or controllable by attackers, respectively. New security requirements are then obtained as countermeasures through threat resolution operators. Such operators are
applied to the specification of the anti-requirements and vulnerabilities revealed by the analysis.
The optional formalization of security-critical parts of a system model provides additional benefits. Threat graphs can then be synthesized. Some of the countermeasure operators can be formalized to yield more
precise countermeasures. Epistemic constructs and patterns will be introduced to specify various types of security goals and support the formal derivation of anti-goals and countermeasures.
Biography:
Axel van Lamsweerde is Full Professor at the Department of Computing Science of the Universit・ catholique de Louvain, Belgium. He was formerly research associate at Philips Research Labs and professor at the universities of Namur and Bruxelles. He was also research fellow at the Computer Science Lab of Stanford Research Institute (Menlo Park, CA). He was co-founder of two software technology transfer centers supported by the European Union. His research interests are in precise techniques for requirements
engineering, system modeling, high assurance systems, lightweight formal methods, process modeling and analysis, medical safety, and knowledge-based software development environments. Since 1990 he has
been instrumental in the development of the KAOS goal-oriented modeling language, method, and toolset. The method and toolset have been used worldwide in more than 25 industrial projects. He is author of the
forthcoming book "Requirements engineering: From System Goals to UML Models to Software Specifications" (Wiley). van Lamsweerde was Editor-in-Chief of the ACM Transactions in Software Engineering and Methodology (ACM, New York), Program Chair of major international software engineering conferences including ESEC'91 and ICSE'94, and is currently Associate Editor of the IEEE Transactions on Software Engineering. He has been keynote speaker at major conferences in the field including the International Conference on Software
Engineering (ICSE'2000) and the International Joint Conference on Requirements Engineering (RE・04). He is an ACM Fellow and is recipient of the ACM SIGSOFT Distinguished Service Award.
See also http://www.info.ucl.ac.be/Bienvenue/Academiques/VanLamsweerde/
Title: Risk-driven information security management: Three projects
Speaker: Roel Wieringa, the University of Twente, Netherlands
Abstract:
If there would be no restrictions on the security budget, companies could reduce information risk to the minimum level attainable by current security techniques. But in a world of finite budgets, some technically feasible protection must be omitted, and security management is risk management. I will describe three projects in which different techniques for information risk management are explored. In the first, we describe a heuristic technique to compose attacks on a network of resources, assembled from known elementary attacks, which allows policy makers to identify composite vulnerabilities and decide where to invest in defenses. In the second
project, I describe an approach to redefine the organizational perimeter to deal with the risks of mobile devices carrying sensitive information. In the third, I briefly propose a way to deal with the dynamics of decisions about security investments.
Biography:
Roel Wieringa is Chair of Information Systems at the the University of Twente, the Netherlands. His research interests include value-based requirements engineering, the alignment of information systems to business goals and processes, software specification techniques and research methodologoy for software engineering. He is currently Associate Editor in Chief of IEEE Software for the area of requirements engineering. He wrote two books, Requirements Engineering: Frameworks for Understanding (Wiley, 1996) and Design Methods for Reactive Systems: Yourdon, Statemate and the UML (Morgan Kaufmann, 2003). Find more information at http://www.cs.utwente.nl/~roelw.
Title: A Risk-Based, Value-Oriented Approach to Quality Requirements
Speaker: Martin Glinz, University of Zurich
Abstract:
Quality requirements, i.e. those requirements that pertain to a system's quality attributes such as safety, reliability, etc., are traditionally regarded to be useful only when they are represented quantitatively so that they can be measured. In this talk, I will present a value-oriented approach to specifying quality requirements that deviates from the classic approach. The new approach uses a broad range of potential representations that are selected on the basis of risk assessment. Requirements engineers select a quality
requirement representation such that they get an optimal balance between mitigating the risk of developing a system that doesn't satisfy the stakeholders' desires and needs on the one hand and the cost of specifying the requirement in the selected representation on the other hand.
Biography:
Martin Glinz is a full professor of Informatics at the University of Zurich. His interests include requirements and software engineering - in particular modeling, validation, and quality - and software
engineering education. He received his Dr. rer. nat. in Computer Science from RWTH Aachen University. Before joining the University of Zurich, he worked in industry for ten years where he was active in
software engineering research, development, training, and consulting. He is on editorial boards and program committees of major journals and conferences in software and requirements engineering, and chairs the steering committee of the IEEE International Requirements Engineering Conference.
See also http://www.ifi.uzh.ch/rerg/people/glinz/
Title: Towards Robust Self-Managed Systems
Speaker: Jeff Kramer, Imperial College London
Abstract:
Rigorous techniques are needed to develop dependable adaptive systems which can cope with both changes in the environment and with changing goals. In this talk, we focus on architectural approaches to self-management, in which software components automatically configure their interaction as
required. The objective is to minimise the degree of explicit management necessary for construction and subsequent evolution whilst preserving the safety properties implied by its specification. We present an outline three-layer reference model as a context in which to articulate some of the main outstanding research challenges.
Biography:
Jeff Kramer is Professor of Computing and Dean of the Faculty of Engineering at Imperial College London. His research interests include rigorous techniques for requirements engineering; software specification,
design and analysis; and software architectures, particularly as applied to distributed and adaptive software systems. Jeff is the Editor-in-Chief of the IEEE Transactions on Software Engineering, and the co-recipient of the 2005 ACM SIGSOFT Outstanding Research Award for his research work in Distributed Software Engineering. He is co-author of a recent book on Concurrency, co-author of a previous book on Distributed Systems and Computer Networks, and the author of over 200 journal and conference publications. He is a Chartered Engineer, Fellow of the IET, Fellow of the BCS and Fellow of the ACM.