CoSMo: An Approach Towards Conceptual Security Modeling

Christine Artelsmair; Wolfgang Essmayr; Peter Lang; Roland Wagner; Edgar Weippl

doi:10.1007/3-540-46146-9_55

CoSMo: An Approach Towards Conceptual Security Modeling

Christine Artelsmair, Wolfgang Essmayr, Peter Lang, Roland Wagner, Edgar Weippl

Institute for Application-oriented Knowledge Processing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceedings › peer-review

Abstract

Security is generally believed to be a very important topic. However, during software development security requirements are hardly ever properly treated, least of all on the conceptual level. Security is considered as some kind of add-on which will be applied to the system after development. To fill this gap we work on the development of a conceptual security modeling method we refer to as CoSMo (Conceptual Security Modeling). In this paper first a comprehensive summary of available security modeling methodologies is presented. Second, various security requirements and mechanisms which are necessary for building secure software systems are described systematically to give a clear distinction between requirements and mechanisms to enforce the security requirements. Finally, a modeling example is given to illustrate particular security requirements and mechanisms.

Original language	English
Title of host publication	Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002
Editors	Abdelkader Hameurlain, Rosiner Cicchetti, Roland Traunmuller
Pages	557-566
Number of pages	10
Volume	2453
DOIs	https://doi.org/10.1007/3-540-46146-9_55
Publication status	Published - Sept 2002

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	2453
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Fields of science

102001 Artificial intelligence
102006 Computer supported cooperative work (CSCW)
102010 Database systems
102014 Information design
102015 Information systems
102016 IT security
102028 Knowledge engineering
102019 Machine learning
102022 Software development
102025 Distributed systems
502007 E-commerce
505002 Data protection
506002 E-government
509018 Knowledge management
202007 Computer integrated manufacturing (CIM)
102033 Data mining
102035 Data science

Access to Document

10.1007/3-540-46146-9_55

Cite this

Artelsmair, C., Essmayr, W., Lang, P., Wagner, R., & Weippl, E. (2002). CoSMo: An Approach Towards Conceptual Security Modeling. In A. Hameurlain, R. Cicchetti, & R. Traunmuller (Eds.), Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002 (Vol. 2453, pp. 557-566). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2453). https://doi.org/10.1007/3-540-46146-9_55

Artelsmair, Christine ; Essmayr, Wolfgang ; Lang, Peter et al. / CoSMo: An Approach Towards Conceptual Security Modeling. Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002. editor / Abdelkader Hameurlain ; Rosiner Cicchetti ; Roland Traunmuller. Vol. 2453 2002. pp. 557-566 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{6d297bccd69943738abf5cc415a8c9d3,

title = "CoSMo: An Approach Towards Conceptual Security Modeling",

abstract = "Security is generally believed to be a very important topic. However, during software development security requirements are hardly ever properly treated, least of all on the conceptual level. Security is considered as some kind of add-on which will be applied to the system after development. To fill this gap we work on the development of a conceptual security modeling method we refer to as CoSMo (Conceptual Security Modeling). In this paper first a comprehensive summary of available security modeling methodologies is presented. Second, various security requirements and mechanisms which are necessary for building secure software systems are described systematically to give a clear distinction between requirements and mechanisms to enforce the security requirements. Finally, a modeling example is given to illustrate particular security requirements and mechanisms.",

author = "Christine Artelsmair and Wolfgang Essmayr and Peter Lang and Roland Wagner and Edgar Weippl",

year = "2002",

month = sep,

doi = "10.1007/3-540-46146-9\_55",

language = "English",

isbn = "3540441263",

volume = "2453",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

pages = "557--566",

editor = "Abdelkader Hameurlain and Rosiner Cicchetti and Roland Traunmuller",

booktitle = "Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002",

}

Artelsmair, C, Essmayr, W, Lang, P, Wagner, R & Weippl, E 2002, CoSMo: An Approach Towards Conceptual Security Modeling. in A Hameurlain, R Cicchetti & R Traunmuller (eds), Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002. vol. 2453, Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 2453, pp. 557-566. https://doi.org/10.1007/3-540-46146-9_55

CoSMo: An Approach Towards Conceptual Security Modeling. / Artelsmair, Christine; Essmayr, Wolfgang; Lang, Peter et al.
Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002. ed. / Abdelkader Hameurlain; Rosiner Cicchetti; Roland Traunmuller. Vol. 2453 2002. p. 557-566 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 2453).

Research output: Chapter in Book/Report/Conference proceeding › Conference proceedings › peer-review

TY - GEN

T1 - CoSMo: An Approach Towards Conceptual Security Modeling

AU - Artelsmair, Christine

AU - Essmayr, Wolfgang

AU - Lang, Peter

AU - Wagner, Roland

AU - Weippl, Edgar

PY - 2002/9

Y1 - 2002/9

N2 - Security is generally believed to be a very important topic. However, during software development security requirements are hardly ever properly treated, least of all on the conceptual level. Security is considered as some kind of add-on which will be applied to the system after development. To fill this gap we work on the development of a conceptual security modeling method we refer to as CoSMo (Conceptual Security Modeling). In this paper first a comprehensive summary of available security modeling methodologies is presented. Second, various security requirements and mechanisms which are necessary for building secure software systems are described systematically to give a clear distinction between requirements and mechanisms to enforce the security requirements. Finally, a modeling example is given to illustrate particular security requirements and mechanisms.

AB - Security is generally believed to be a very important topic. However, during software development security requirements are hardly ever properly treated, least of all on the conceptual level. Security is considered as some kind of add-on which will be applied to the system after development. To fill this gap we work on the development of a conceptual security modeling method we refer to as CoSMo (Conceptual Security Modeling). In this paper first a comprehensive summary of available security modeling methodologies is presented. Second, various security requirements and mechanisms which are necessary for building secure software systems are described systematically to give a clear distinction between requirements and mechanisms to enforce the security requirements. Finally, a modeling example is given to illustrate particular security requirements and mechanisms.

UR - https://www.scopus.com/pages/publications/84863584576

U2 - 10.1007/3-540-46146-9_55

DO - 10.1007/3-540-46146-9_55

M3 - Conference proceedings

SN - 3540441263

SN - 9783540441267

VL - 2453

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 557

EP - 566

BT - Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002

A2 - Hameurlain, Abdelkader

A2 - Cicchetti, Rosiner

A2 - Traunmuller, Roland

ER -

Artelsmair C, Essmayr W, Lang P, Wagner R, Weippl E. CoSMo: An Approach Towards Conceptual Security Modeling. In Hameurlain A, Cicchetti R, Traunmuller R, editors, Proceedings 13th International Conference on Database and Expert Systems Applications - DEXA 2002. Vol. 2453. 2002. p. 557-566. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/3-540-46146-9_55

CoSMo: An Approach Towards Conceptual Security Modeling

Abstract

Publication series

Fields of science

Access to Document

Other files and links

Cite this