TY - GEN
T1 - Towards the derivation of secure business process designs
AU - Argyropoulos, Nikolaos
AU - Mouratidis, Haralambos
AU - Fish, Andrew
PY - 2015/12/15
Y1 - 2015/12/15
N2 - Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.
AB - Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.
U2 - 10.1007/978-3-319-25747-1_25
DO - 10.1007/978-3-319-25747-1_25
M3 - Conference contribution with ISSN or ISBN
SN - 9783319257464
VL - 9382
T3 - Lecture Notes in Computer Science
SP - 248
EP - 258
BT - Advances in Conceptual Modeling
PB - Springer International Publishing
CY - Switzerland
T2 - Advances in Conceptual Modeling
Y2 - 15 December 2015
ER -