Home

SECURIS

Model-driven Development and Analysis of Secure Information Systems

SECURIS aims to establish computerised methodology for the development of secure IT systems targeting security from an overall business perspective, emphasising the organisational and business context to the same extent as the actual technology.

SECURIS builds on results from several finishing and recently completed research projects; in particular:

  • The methodology for model-based risk analysis resulting from the EU-funded CORAS project;
  • The methodology for model-driven development resulting from the EU-funded COMBINE project.

The main results will be:

  • Prototype tool supporting the capture and formalisation of security requirements
  • Prototype tool supporting model-driven specification and implementation of security policies
  • Prototype tool supporting model-driven specification and development of security architectures
  • Prototype tool supporting model-driven security assessment
  • Methodology handbook

SECURIS is trial-driven and based on an iterative process. Each iteration is of six months duration and terminates with a trial embedded in a development project of one of the industrial partners. A steering committee of representatives from all SECURIS partners adjusts and refines the overall direction of the technical work based on trial results. SECURIS is funded by the Research Council of Norway and runs from January 1, 2003 until December 31, 2006.

Partners involved in SECURIS:

  • FLO/IKT
  • Hydro
  • NetCom
  • Statnett
  • WesternGeco

Former Partners involved in SECURIS:

  • Det norske veritas (DNV)
  • Microsoft Research
  • Norsk senter for informasjonssikring (NorSIS)

Published March 27, 2006

     Copyright © SINTEF      |    This is a mailto link    |    This is a mailto link  |   About www.sintef.com
uiqt|wBqvnwH{qv|mn5vwqvnwH{qv|mn5vwuiqt|wB%wmjui{|mzH{qv|mn5vw%wmjui{|mzH{qv|mn5vw