To main content

Karin Bernsmed

Senior Research Scientist

Karin Bernsmed

Senior Research Scientist

Karin Bernsmed
Phone: +47 482 15 585
Department: Software Engineering, Safety and Security
Office: Trondheim

Publications and responsibilities

Publication
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1778406

Threat modelling is considered a key activity in secure software engineering. However, despite its documented benefits it has not (yet) been widely adopted by agile software development projects. In this paper we present results from a qualitative study of how it is performed in practice by four dif...

Year 2019
Type Part of a book/report
Publication
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1652207

Threat modeling is a way to get an overview of possible attacks against your systems. The advantages of threat modeling include tackling security problems early, improved risk assessments, and more effective security testing. There will always be limited resources available for security, and threat ...

Year 2019
Type Part of a book/report
Publication
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1680339

The safety of aviation software is ensured by performing development according to the DO-178C standard. However, this standard has a blind spot in that it fails to consider software security aspects in development. The Building Security In Maturity Model (BSIMM) comprises a software security framewo...

Year 2018
Type Part of a book/report
Publication
https://www.sintef.no/en/publications/publication/?pubid=CRIStin+1580652

In order to be responsible stewards of other people’s data, cloud providers must be accountable for their data handling practices. The potential long provider chains in cloud computing introduce additional accountability challenges, with many stakeholders involved. Symmetry is very important in any ...

Year 2018
Type Journal publication