Publication
Threat Modeling in Modern Software Development
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1652207
Martin Gilje Jaatun
Senior Research Scientist
Martin Gilje Jaatun
Senior Research Scientist
Phone:
+47 900 26 921
Email:
martin.g.jaatun@sintef.no
Unit:
SINTEF Digital
Department:
Software Engineering, Safety and Security
Office:
Trondheim
Publications and responsibilities
Publication
AGILITY AND SECURITY: WHY NOT BOTH?
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1654612
Publication
Cyber Security Considerations for Self-healing Smart Grid Networks
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1646086
Fault Location, Isolation and System Restoration (FLISR) mechanisms allow for rapid restoration of power to customers that are not directly implicated by distribution network failures. However, depending on where the logic for the FLISR system is located, deployment may have security implications fo...
Publication
Incident Response & Business Continuity in the Grid
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1615942
Publication
(Presentasjon) Understanding challenges to adoption of the Protection Poker software security game
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1612433
Publication
(Presentasjon) Protection Poker
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1610688
Publication
(Presentasjon) Software Security Activities that Support Incident Management in Secure DevOps
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1610610
Many software services are currently created using DevOps, where developers and operations personnel are more tightly integrated. The DevOps paradigm enables shorter development cycles, but increased speed has raised concerns over whether security issues may be overlooked. However, perfect security ...
Publication
Software Security Activities that Support Incident Management in Secure DevOps
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1610537
Many software services are currently created using DevOps, where developers and operations personnel are more tightly integrated. The DevOps paradigm enables shorter development cycles, but increased speed has raised concerns over whether security issues may be overlooked. However, perfect security ...
Publication
Accountability Requirements in the Cloud Provider Chain
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1580652
In order to be responsible stewards of other people’s data, cloud providers must be accountable for their data handling practices. The potential long provider chains in cloud computing introduce additional accountability challenges, with many stakeholders involved. Symmetry is very important in any ...
Publication
Risk in the Age of Software Security
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1579626