COLLABORATIVE SECURITY ASSESSMENTS IN EMBEDDED SYSTEMS DEVELOPMENT The ESSAF Framework for Structured Qualitative Analysis

被引：0

作者：

Koester, Friedrich ^{[1
]}

Klaas, Michael ^{[1
]}

Nguyen, Hanh Quyen ^{[1
]}

Brenner, Walter ^{[1
]}

Braendle, Markus

Obermeier, Sebastian

机构：

[1] Univ St Gallen, Inst Informat Management, Mueller Friedberg Str 8, CH-9000 St Gallen, Switzerland

来源：

SECRYPT 2009: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY | 2009年

关键词：

Collaborative security assessment; ESSAF framework; Embedded systems security; Security knowledge management; Threat modeling; NETWORKS; SCADA;

D O I：

暂无

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

The standardization of network protocols and software components in embedded systems development has introduced security threats that have been common before in e-commerce and office systems into the domain of critical infrastructures. The ESSAF framework presented in this paper lays the ground for collaborative, structured security assessments during the design and development phase of these systems. Its three phases system modeling, security modeling and mitigation planning guide software developers in the independent assessment of their product's security, minimizing the burden on security experts in the collection of security relevant data.

引用

页码：305 / +

页数：2

共 50 条

[1] TOOL SUPPORT FOR ACHIEVING QUALITATIVE SECURITY ASSESSMENTS OF CRITICAL INFRASTRUCTURES The ESSAF Framework for Structured Qualitative Analysis
Quyen, Nguyen Hanh
Friedrich, Koester
Michael, Klaas
Walter, Brenner
Sebastian, Obermeier
Markus, Braendle
[J]. SECRYPT 2009: PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON SECURITY AND CRYPTOGRAPHY, 2009, : 297 - +
[2] A Systematic Framework for Structured Object-Oriented Security Requirements Analysis in Embedded Systems
Markose, Sojan
Frank Liu, Xiaoqing
McMillin, Bruce
[J]. EUC 2008: PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON EMBEDDED AND UBIQUITOUS COMPUTING, VOL 1, MAIN CONFERENCE, 2008, : 75 - 81
[3] Collaborative Network Development for an Embedded Framework
Bar-Magen Numhauser, Jonathan
Garcia-Cabot, Antonio
Garcia, Eva
de-Marcos, Luis
Gutierrez de Mesa, Jose Antonio
[J]. 7TH INTERNATIONAL CONFERENCE ON KNOWLEDGE MANAGEMENT IN ORGANIZATIONS: SERVICE AND CLOUD COMPUTING, 2013, 172 : 443 - 453
[4] Development of Web-based Collaborative Framework for the Simulation of Embedded Systems
Yang, Woong
Leen, Soo-Hong
Jin, Yong Zhu
Hwang, Hyun-Tae
[J]. JOURNAL OF COMPUTATIONAL DESIGN AND ENGINEERING, 2016, 3 (04) : 363 - 369
[5] Safety and security collaborative analysis framework for high-performance embedded computing devices?
Yarza, Irune
Agirre, Irune
Mugarza, Imanol
Cerrolaza, Jon Perez
[J]. MICROPROCESSORS AND MICROSYSTEMS, 2022, 93
[6] Safety and security collaborative analysis framework for high-performance embedded computing devices
Yarza, Irune
Agirre, Irune
Mugarza, Imanol
Perez Cerrolaza, Jon
[J]. MICROPROCESSORS AND MICROSYSTEMS, 2022, 93
[7] Avatar: A Framework to Support Dynamic Security Analysis of Embedded Systems' Firmwares
Zaddach, Jonas
Bruno, Luca
Francillon, Aurelien
Balzarotti, Davide
[J]. 21ST ANNUAL NETWORK AND DISTRIBUTED SYSTEM SECURITY SYMPOSIUM (NDSS 2014), 2014,
[8] An Information Security Assessments Framework for Power Control Systems
Wang, Yufei
Zhang, Tao
Ma, Yuanyuan
Zhang, Bo
[J]. ENERGY AND POWER TECHNOLOGY, PTS 1 AND 2, 2013, 805-806 : 980 - 984
[9] Curriculum Development for Embedded Systems Security
Zalewski, Janusz
Kornecki, Andrew J.
Czejdo, Bogdan Denny
Gonzalez, Fernando Garcia
Subramanian, Nary
Trawczynski, Dawid
[J]. 2014 ASEE ANNUAL CONFERENCE, 2014,
[10] A framework for specifying and managing security requirements in collaborative systems
Yau, Stephen S.
Chen, Zhaoji
[J]. AUTONOMIC AND TRUSTED COMPUTING, PROCEEDINGS, 2006, 4158 : 500 - 510

← 1 2 3 4 5 →