Archives: Publication

Monday, January 24, 2022

New Publication: A Security Property Decomposition Argument Pattern for Structured Assurance Case Models

Our new publication "A Security Property Decomposition Argument Pattern for Structured Assurance Case Models" is now published online.  In this paper, we propose a security assurance argument pattern called Security Property Decomposition. This pattern is extracted by studying existing security assurance case models and their decomposition to... More

Friday, November 26, 2021

New Publication: Analyzing Implicit Interactions to Identify Weak Points in Cyber-Physical System Designs

Our new publication “Analyzing Implicit Interactions to Identify Weak Points in Cyber-Physical System Designs” is now published online. In this paper, we present an approach to identify weak points in the designs of cyber-physical systems based on frequency analyses of the interactions, both implicit and intended, present in a system design.... More

Wednesday, October 13, 2021

New Publication: Modeling and Simulation Approaches for Cybersecurity Impact Analysis: State-of-the-Art

Our new publication "Modeling and Simulation Approaches for Cybersecurity Impact Analysis: State-of-the-Art" is now published online. In this paper, we survey the existing literature to aggregate the diverse modeling and simulation-based approaches that have been used to define and/or characterize the impact of attacks on cyber-physical and... More

Thursday, June 17, 2021

New Publication: Leveraging External Data Sources to Enhance Secure System Design

Our new publication "Leveraging External Data Sources to Enhance Secure System Design" is now published online.  In this work, we explore how external online data sources for vulnerabilities, attack patterns, threat intelligence, and other security information can be leveraged, using Natural Language Processing (NLP), to produce a report to... More

Thursday, March 11, 2021

New Publication: Specification, Detection, and Treatment of STRIDE Threats for Software Components: Modeling, Formal Methods, and Tool Support

Our latest work on specifying, detecting, and treating STRIDE threats for software components is now available in the Journal of Systems Architecture. This work is the result of a a collaboration with with colleagues at IRIT. See Publications for more... More

Monday, February 15, 2021

New Publication: Evaluating the Soundness of Security Metrics from Vulnerability Scoring Frameworks

Our new publication "Evaluating the Soundness of Security Metrics from Vulnerability Scoring Frameworks" is now published online.  In this paper, we evaluate the soundness of the security metrics obtained via several vulnerability scoring frameworks. The evaluation is based on the Method for DesigningSound Security Metrics (MDSSM). We also... More

Thursday, December 17, 2020

New Publication: Identifying and Analyzing Implicit Interactions in a Wastewater Dechlorination System

Our new publication "Identifying and Analyzing Implicit Interactions in a Wastewater Dechlorination System" is now published online. This paper presents the results of applying a formal methods-based approach for identifying and analyzing implicit interactions in a real-world wastewater dechlorination system provided by a municipal wastewater... More

Tuesday, December 1, 2020

New Publication: Reusable Formal Models for Threat Specification, Detection, and Treatment

Our new publication "Reusable Formal Models for Threat Specification, Detection, and Treatment" is now published online and will be presented virtually at the 19th International Conference on Software and Software Reuse (ICSR 2020) this week. This work is the result of  collaboration with colleagues at IRIT. The paper proposes an integrated... More

Monday, September 21, 2020

New Publication: Evaluation of Statistical Tests for Detecting Storage-Based Covert Channels

Congratulations to Master's Student Thomas Sattolo for his publication "Evaluation of Statistical Tests for Detecting Storage-Based Covert Channels" which is now published in online in the Proceedings of the 35th International Conference on ICT Systems Security and Privacy Protection (IFIP SEC 2020). In this paper, we evaluate the effectiveness of... More

Saturday, July 11, 2020

New Publication: Recommendations for Effective Security Assurance of Software-Dependent Systems

Our new publication "Recommendations for Effective Security Assurance of Software-Dependent Systems" is now published online and will be presented virtually at Computing Conference 2020 this week. This work presents a set of recommendations which outline a collection of follow-on research directions that can advance the state-of-the-art and... More

Friday, February 14, 2020

New Publication: Formal Specification and Verification of Reusable Communication Models for Distributed Systems Architecture

A new journal article resulting from a collaboration with with colleagues at IRIT has been published in Future Generation Computer Systems. See Publications for more... More

Monday, January 13, 2020

New Publication: Distributed Maintenance of a Spanning Tree of k-Connected Graphs

A new paper resulting from a collaboration with with colleagues has been published in the proceedings of the IEEE 24th Pacific Rim International Symposium on Dependable Computing (PRDC 2019). See Publications for more... More

Load More →