Applying use cases: a practical guide
Applying use cases: a practical guide
The unified software development process
The unified software development process
Component-based product line engineering with UML
Component-based product line engineering with UML
System Models, e-Risks and e-Trust
I3E '01 Proceedings of the IFIP Conference on Towards The E-Society: E-Commerce, E-Business, E-Government
Dos and don'ts of client authentication on the web
SSYM'01 Proceedings of the 10th conference on USENIX Security Symposium - Volume 10
Modelling Trust Requirements by Means of a Visualization Language
REV '08 Proceedings of the 2008 Requirements Engineering Visualization
Security engineering for embedded systems: the SecFutur vision
Proceedings of the International Workshop on Security and Dependability for Resource Constrained Embedded Systems
Information modeling for automated risk analysis
CMS'06 Proceedings of the 10th IFIP TC-6 TC-11 international conference on Communications and Multimedia Security
A security-focused engineering process for systems of embedded components
Proceedings of the International Workshop on Security and Dependability for Resource Constrained Embedded Systemss
| Hi-index | 0.00 |
Security evaluation and security assurance are important aspects of trust in e-business. CORAS is a European project which is developing a tool-supported framework for precise, unambiguous, and efficient risk assessment of security critical systems. The framework is obtained through adapting, refining, extending, and combining methods for risk analysis of critical systems and semiformal modelling methods. In this paper we provide an overview of the CORAS framework for model-based risk assessment, emphasising its application on Web-enabled B2C e-commerce services and the meta-data based deployment model underpinning the CORAS extensible platform for tool inclusion.