Abstract
We present CARiSMA, a tool that is originally designed to support model-based security analysis of IT systems. In our recent work, we added several new functionalities to CARiSMA to support the privacy of personal data. Moreover, we introduced a mechanism to assist the system designers to perform a CARiSMA analysis by automatically initializing an appropriate CARiSMA analysis concerning security and privacy requirements. The motivation for our work is Article 25 of Regulation (EU) 2016/679, which requires appropriate technical and organizational controls must be implemented for ensuring that, by default, the processing of personal data complies with the principles on processing of personal data. This implies that initially IT systems must be analyzed to verify if such principles are respected. System models allow the system developers to handle the complexity of systems and to focus on key aspects such as privacy and security. CARiSMA is available at http://carisma.umlsec.de and our screen cast at https://youtu.be/b5zeHig3ARw.
| Originalsprog | Engelsk |
|---|---|
| Titel | Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering - ESEC/FSE 2017 |
| Antal sider | 5 |
| Forlag | Association for Computing Machinery |
| Publikationsdato | 2017 |
| Sider | 989–993 |
| ISBN (Trykt) | 9781450351058 |
| DOI | |
| Status | Udgivet - 2017 |
| Udgivet eksternt | Ja |
| Begivenhed | Joint Meeting on Foundations of Software Engineering - Paderborn, Tyskland Varighed: 4 sep. 2017 → 8 sep. 2017 Konferencens nummer: 11 https://dblp.org/rec/conf/sigsoft/2017.html |
Konference
| Konference | Joint Meeting on Foundations of Software Engineering |
|---|---|
| Nummer | 11 |
| Land/Område | Tyskland |
| By | Paderborn |
| Periode | 04/09/2017 → 08/09/2017 |
| Internetadresse |