Secure Information Systems Engineering: Experiences and Lessons Learned from Two Health Care Projects
Conference paper
Mouratidis, Haralambos, Sunyaev, Ali and Jurjens, Jan 2009. Secure Information Systems Engineering: Experiences and Lessons Learned from Two Health Care Projects. CAiSE 2009. LNCS 5565 pp. 231-245
| Authors | Mouratidis, Haralambos, Sunyaev, Ali and Jurjens, Jan |
|---|---|
| Type | Conference paper |
| Abstract | In CAiSE 2006, we had presented a framework to support development of secure information systems. The framework was based on the integration of two security-aware approaches, the Secure Tropos methodology, which provides an approach for security requirements elicitation, and the UMLsec approach, which allows one to include the security requirements into design models and offers tools for security analysis. In this paper we reflect on the usage of this framework and we report our experiences of applying it to two different industrial case studies from the health care domain. However, due to lack of space we only describe in this paper one of the case studies. Our findings demonstrate that the support of the framework for the consideration of security issues from the early stages and throughout the development process can result in a substantial improvement in the security of the analysed systems. |
| Keywords | secure information systems; health information systems |
| Year | 2009 |
| Conference | CAiSE 2009 |
| Accepted author manuscript | License CC BY-ND |
| Publication dates | |
| 2009 | |
| Publication process dates | |
| Deposited | 18 Jan 2010 |
| ISSN | 0302-9743 |
| 1611-3349 | |
| Web address (URL) | http://dx.doi.org/10.1007/978-3-642-02144-2_21 |
| http://hdl.handle.net/10552/494 | |
| Additional information | Citation: |
| Place of publication | pp. 231-245 |
https://repository.uel.ac.uk/item/86467
Download files
110
total views211
total downloads2
views this month0
downloads this month