A Security Pattern-Driven Approach toward the Automation of Risk Treatment in Business Processes

Varela Vaca, Ángel Jesús; Warschofsky, Robert; Martínez Gasca, Rafael; Pozo Hidalgo, Sergio; Meinel, Christoph

doi:10.1007/978-3-642-33018-6_2

Ponencia

dc.creator	Varela Vaca, Ángel Jesús	es
dc.creator	Warschofsky, Robert	es
dc.creator	Martínez Gasca, Rafael	es
dc.creator	Pozo Hidalgo, Sergio	es
dc.creator	Meinel, Christoph	es
dc.date.accessioned	2022-11-15T10:13:49Z
dc.date.available	2022-11-15T10:13:49Z
dc.date.issued	2012
dc.identifier.citation	Varela Vaca, Á.J., Warschofsky, R., Martínez Gasca, R., Pozo Hidalgo, S. y Meinel, C. (2012). A Security Pattern-Driven Approach toward the Automation of Risk Treatment in Business Processes. En International Joint Conference CISIS’12-ICEUTE´12-SOCO´12 Special Sessions (13-23), Ostrava, Czech Republic: Springer.
dc.identifier.isbn	978-3-642-33017-9	es
dc.identifier.issn	2194-5357	es
dc.identifier.uri	https://hdl.handle.net/11441/139427
dc.description.abstract	Risk management has become an essential mechanism for business and security analysts, since it enable the identification, evalu ation and treatment of any threats, vulnerabilities, and risks to which organizations maybe be exposed. In this paper, we discuss the need to provide a standard representation of security countermeasures in order to automate the selection of countermeasures for business processes. The main contribution lies in the specification of security pattern as standard representation for countermeasures. Classical security pattern structure is extended to incorporate new features that enable the automatic selec tion of security patterns. Furthermore, a prototype has been developed which support the specification of security patterns in a graphical way.	es
dc.description.sponsorship	Junta de Andalucía P08-TIC-04095	es
dc.description.sponsorship	Ministerio de Educación y Ciencia TIN2009-13714	es
dc.format	application/pdf	es
dc.format.extent	11	es
dc.language.iso	eng	es
dc.publisher	Springer	es
dc.relation.ispartof	International Joint Conference CISIS’12-ICEUTE´12-SOCO´12 Special Sessions (2012), pp. 13-23.
dc.rights	Attribution-NonCommercial-NoDerivatives 4.0 Internacional	*
dc.rights.uri	http://creativecommons.org/licenses/by-nc-nd/4.0/	*
dc.subject	Business process management	es
dc.subject	Security	es
dc.subject	Pattern	es
dc.subject	Risk treatment	es
dc.subject	Automation	es
dc.title	A Security Pattern-Driven Approach toward the Automation of Risk Treatment in Business Processes	es
dc.type	info:eu-repo/semantics/conferenceObject	es
dcterms.identifier	https://ror.org/03yxnpp24
dc.type.version	info:eu-repo/semantics/submittedVersion	es
dc.rights.accessRights	info:eu-repo/semantics/openAccess	es
dc.contributor.affiliation	Universidad de Sevilla. Departamento de Lenguajes y Sistemas Informáticos	es
dc.relation.projectID	P08-TIC-04095	es
dc.relation.projectID	TIN2009-13714	es
dc.relation.publisherversion	https://link.springer.com/chapter/10.1007/978-3-642-33018-6_2	es
dc.identifier.doi	10.1007/978-3-642-33018-6_2	es
dc.contributor.group	Universidad de Sevilla. TIC-258: Data-centric Computing Research Hub	es
dc.publication.initialPage	13	es
dc.publication.endPage	23	es
dc.eventtitle	International Joint Conference CISIS’12-ICEUTE´12-SOCO´12 Special Sessions	es
dc.eventinstitution	Ostrava, Czech Republic	es
dc.relation.publicationplace	Berlin, Germany	es
dc.contributor.funder	Junta de Andalucía	es
dc.contributor.funder	Ministerio de Educación y Ciencia (MEC). España	es

Ficheros	Tamaño	Formato	Ver	Descripción
A security pattern-driven approach ...	996.8Kb	[PDF]	Ver/Abrir

Este registro aparece en las siguientes colecciones

Ponencias (Lenguajes y Sistemas Informáticos)

Mostrar el registro sencillo del ítem

Excepto si se señala otra cosa, la licencia del ítem se describe como: Attribution-NonCommercial-NoDerivatives 4.0 Internacional