Search

Your search keyword '"Yskout, Koen"' showing total 76 results
Start Over Author "Yskout, Koen"
76 results on '"Yskout, Koen"'

1. Threat Modeling: A Rough Diamond or Fool’s Gold?

Author

Tran, Anh-Duy, Yskout, Koen, Joosen, Wouter, Goos, Gerhard, Series Editor, Hartmanis, Juris, Founding Editor, Bertino, Elisa, Editorial Board Member, Gao, Wen, Editorial Board Member, Steffen, Bernhard, Editorial Board Member, Yung, Moti, Editorial Board Member, Tekinerdoğan, Bedir, editor, Spalazzese, Romina, editor, Sözer, Hasan, editor, Bonfanti, Silvia, editor, and Weyns, Danny, editor

Published
2024
Full Text
View/download PDF

6. Empirical Assessment of Security Requirements and Architecture: Lessons Learned

Author

Scandariato, Riccardo, Paci, Federica, Sang Tran, Le Minh, Labunets, Katsiaryna, Yskout, Koen, Massacci, Fabio, Joosen, Wouter, Hutchison, David, editor, Kanade, Takeo, editor, Kittler, Josef, editor, Kleinberg, Jon M., editor, Kobsa, Alfred, editor, Mattern, Friedemann, editor, Mitchell, John C., editor, Naor, Moni, editor, Nierstrasz, Oscar, editor, Pandu Rangan, C., editor, Steffen, Bernhard, editor, Terzopoulos, Demetri, editor, Tygar, Doug, editor, Weikum, Gerhard, editor, Heisel, Maritta, editor, Joosen, Wouter, editor, Lopez, Javier, editor, and Martinelli, Fabio, editor

Published
2014
Full Text
View/download PDF

10. The Security Twin Peaks

Author

Heyman, Thomas, Yskout, Koen, Scandariato, Riccardo, Schmidt, Holger, Yu, Yijun, Hutchison, David, Series editor, Kanade, Takeo, Series editor, Kittler, Josef, Series editor, Kleinberg, Jon M., Series editor, Mattern, Friedemann, Series editor, Mitchell, John C., Series editor, Naor, Moni, Series editor, Nierstrasz, Oscar, Series editor, Pandu Rangan, C., Series editor, Steffen, Bernhard, Series editor, Sudan, Madhu, Series editor, Terzopoulos, Demetri, Series editor, Tygar, Doug, Series editor, Vardi, Moshe Y., Series editor, Weikum, Gerhard, Series editor, Erlingsson, Úlfar, editor, Wieringa, Roel, editor, and Zannone, Nicola, editor

Published
2011
Full Text
View/download PDF

11. Systematic Elicitation of Common Security Design Flaws

Author

Verreydt, Stef, Yskout, Koen, Sion, Laurens, and Joosen, Wouter

Abstract

—Threat modeling allows potential security threats to be identified and mitigated at design time. Countermeasures in current threat modeling approaches are mostly modeled as a boolean: either they are implemented, or they are not. This does not allow to take into account potential design flaws for the countermeasure itself. A considerable number of security issues is, however, related to the wrong or incomplete application of common security tactics. For example, the effectiveness of audit logs drops if the data written to the logs is not sanitized. In this paper, we describe our novel approach which aims to systematically and automatically identify common security design flaws., The poster was accepted at the 7th IEEE European Symposium on Security and Privacy (Euro S&P 2022) and presented in the poster session. Original poster: https://ieeeeurosp.github.io/2022/posters/

Published
2022
Full Text
View/download PDF

17. Evolution of Security Engineering Artifacts

Author

Felderer, Michael, primary, Katt, Basel, additional, Kalb, Philipp, additional, Jürjens, Jan, additional, Ochoa, Martín, additional, Paci, Federica, additional, Tran, Le Minh Sang, additional, Tun, Thein Than, additional, Yskout, Koen, additional, Scandariato, Riccardo, additional, Piessens, Frank, additional, Vanoverberghe, Dries, additional, Fourneret, Elizabeta, additional, Gander, Matthias, additional, Solhaug, Bjørnar, additional, and Breu, Ruth, additional

Published
2015
Full Text
View/download PDF

21. Security Threat Modeling

Author

Sion, Laurens, primary, Yskout, Koen, additional, Van Landuyt, Dimitri, additional, van den Berghe, Alexander, additional, and Joosen, Wouter, additional

Published
2020
Full Text
View/download PDF

22. Threat modeling

Author

Yskout, Koen, primary, Heyman, Thomas, additional, Van Landuyt, Dimitri, additional, Sion, Laurens, additional, Wuyts, Kim, additional, and Joosen, Wouter, additional

Published
2020
Full Text
View/download PDF

34. Evolution of Security Engineering Artifacts

Author

Felderer, Michael, Katt, Basel, Kalb, Philipp, Jürjens, Jan, Ochoa, Martín, Paci, Federica Maria Francesca, Tran, Le Minh Sang, Tun, Thein Than, Yskout, Koen, Scandariato, Riccardo, Piessens, Frank, Vanoverberghe, Dries, Fourneret, Elizabeta, Gander, Matthias, Solhaug, Bjørnar, and Breu, Ruth

Subjects
secure software evolution
Published
2014

36. Connecting Security Requirements and Software Architecture with Patterns (Beveiligingsvereisten en softwarearchitectuur verbinden met patronen) : Connecting Security Requirements and Software Architecture with Patterns

Author

Yskout, Koen, Scandariato, Riccardo, and Joosen, Wouter

Abstract

Recurring solutions to software engineering problems are often captured in patterns, which describe, in a generic but reusable manner, a specific problem and a corresponding solution. This thesis develops a deeper understanding about how pattern catalogs can help a software architect to reconcile the software's requirements and the architecture in the context of security. To achieve this goal, we follow an empirical approach.Two aspects of development are taken into account, namely (1) the construction of the software, and (2) its evolution over time. An analysis of the security patterns landscape shows that sufficient security patterns exist for the construction of secure software, but organization is needed to make them more usable. With a controlled empirical experiment, we investigate the effect of such organization from the viewpoint of the software architect.Regarding patterns for secure co-evolution, we observe that no patterns have been defined. Therefore, we propose a framework for precisely describing such patterns (called change patterns), together with a process for applying them. We illustrate the concepts with patterns for handling evolving trust requirements and access control. The approach is validated by means of two empirical studies, and implemented in a proof of concept tool. status: published

Published
2013

38. Change patterns: Co-evolving requirements and architecture

Author

Yskout, Koen, Scandariato, Riccardo, and Joosen, Wouter

Abstract

Emerging classes of systems are more and more subject to changes in their requirements and environment assumptions. Such changes have a far-reaching impact across several artifacts. This paper argues that patterns of co-evolution (or change patterns) can be observed between ``privileged'' pairs of artifacts, like the requirements specification and the architectural design. The paper introduces change patterns as a precise framework to systematically capture and handle change. The approach is based on model-driven engineering concepts and is accompanied by a tool-supported process. Changing trust assumptions are presented as an example of security-related evolution, and are used to illustrate the approach. ispartof: CW Reports nrpages: 24 status: published

Published
2010

41. Using change patterns to incorporate evolving trust relationships into a software architecture

Author

Yskout, Koen, Scandariato, Riccardo, and Joosen, Wouter

Abstract

When designing a secure software architecture, the architect must take possible evolution of the system and its environment into account. Inevitably, during the lifetime of the application, changes will occur that reduce the security of the system. It is crucial that these changes are anticipated, and that they can be accomodated with minimal impact on the architecture. This report introduces the concept of `change patterns', providing guidance to the architect to achieve this goal. A change pattern guides the architect in designing an architecture that is resistant against certain foreseen evolutions of the requirements and assumptions. It explicitly records the change of requirements or assumptions it supports. After the architect has selected appropriate change patterns, applying a pattern consists of two steps. First, the architecture needs to be prepared up-front for the evolution (even though it has not yet occurred), based on a likelihood and importance analysis of the evolution. Second, once the evolution occurs, the architect is triggered to perform the necessary steps to update the application such that it conforms to the new situation. These two steps are reflected in the solutions that belong to the change pattern: architectural patterns for the up-front preparation, and change guidance for performing the actual update of the application. This report contains a description of a change pattern, an outline of a process to use change patterns, and a catalogue of eight change patterns for evolving trust relationships, and an illustration of their use. ispartof: CW Reports nrpages: 54 status: published

Published
2010

42. Evolution of Security Engineering Artifacts

Author

Felderer, Michael, primary, Katt, Basel, additional, Kalb, Philipp, additional, Jürjens, Jan, additional, Ochoa, Martín, additional, Paci, Federica, additional, Tran, Le Minh Sang, additional, Tun, Thein Than, additional, Yskout, Koen, additional, Scandariato, Riccardo, additional, Piessens, Frank, additional, Vanoverberghe, Dries, additional, Fourneret, Elizabeta, additional, Gander, Matthias, additional, Solhaug, Bjørnar, additional, and Breu, Ruth, additional

Published
2014
Full Text
View/download PDF

43. Security patterns: 10 years later

Author

Yskout, Koen, Heyman, Thomas, Scandariato, Riccardo, and Joosen, Wouter

Abstract

Reusing time-tested solutions rather than inventing ad-hoc quick fixes is a well-known security principle. Architectural and design patterns represent proven techniques to package knowledge from software engineering experts in a reusable format. More importantly, the solution proposed by a pattern is known to be sound because it is time-tested -- its strengths, weaknesses and possible drawbacks are known in advance. Therefore, in software security engineering, security patters have been considered to be a very promising means to increase the quality of secure design and make security more accessible to software engineers. However, their adoption does not live up to their potential. To understand why this is so, this paper analyzes the literature of security patterns published over the last ten years and outlines existing gaps. ispartof: CW Reports nrpages: 24 status: published

Published
2008

44. Architecting software with security patterns

Author

Scandariato, Riccardo, Yskout, Koen, Heyman, Thomas, and Joosen, Wouter

Abstract

Security patterns, as domain-independent expert knowledge packaged in a reusable format, are able to offer significant guidance to the software engineer in developing secure systems. However, the overabundance of published security patterns complicates the process of finding the right pattern to solve the problem at hand. This is due to three reasons. First, not all security patterns are relevant to the software engineer. Second, the domain independence of patterns sometimes complicates finding a solution to a domain specific problem. Third, patterns exist on different levels of abstraction. Not all patterns can be applied to every step in the development process of a system. This report proposes a method to facilitate the selection of a suitable set of security patterns to realize a specific set of security requirements. It is comprised of two parts. First, additional structure is superimposed on this collection. Second, a methodology is proposed that, given this structured inventory of patterns, guides the software engineer from the security requirements to an appropriate solution using patterns, taking into account various trade-offs and relations between patterns. ispartof: CW Reports nrpages: 26 status: published

Published
2008

45. Composing application models and security models: On the value of aspect-oriented technologies

Author

Hovsepyan, Aram, Van Baelen, Stefan, Yskout, Koen, Berbers, Yolande, Joosen, Wouter, Aldawud, Omar, Cazzola, Walter, Elrad, Tzilla, Gray, Jeff, Kienzle, Joerg, and Stein, Dominik

Abstract

ispartof: pages:1-10 ispartof: Eleventh international workshop on aspect-oriented modeling (AOM@MODELS 2007) pages:1-10 ispartof: International conference on model driven engineering languages and systems (MODELS 2007) location:Nashville, Tennessee, USA date:30 Sep - 5 Oct 2007 status: published

Published
2007

46. Change patterns

Author

Yskout, Koen, primary, Scandariato, Riccardo, additional, and Joosen, Wouter, additional

Published
2012
Full Text
View/download PDF

50. Does Organizing Security Patterns Focus Architectural Choices?

Author

Yskout, Koen, Scandariato, Riccardo, and Joosen, Wouter

Subjects
COMPUTER security, SOFTWARE patterns, COMPUTER software development, COMPUTER architecture, SYSTEMS development, COMPUTER systems
Abstract

Security patterns can be a valuable vehicle to design secure software. Several proposals have been advanced to improve the usability of security patterns. They often describe extra annotations to be included in the pattern documentation. This paper presents an empirical study that validates whether those proposals provide any real benefit for software architects. A controlled experiment has been executed with 90 master students, who have performed several design tasks involving the hardening of a software architecture via security patterns. The results show that annotations produce benefits in terms of a reduced number of alternatives that need to be considered during the selection of a suitable pattern. However, they do not reduce the time spent in the selection process. [ABSTRACT FROM AUTHOR]

Published
2012

Catalog

Books, media, physical & digital resources
See catalog results