Towards the derivation of secure business process designs

Nikolaos Argyropoulos, Haralambos Mouratidis, Andrew Fish

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBN

Abstract

Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.
Original languageEnglish
Title of host publicationAdvances in Conceptual Modeling
Place of PublicationSwitzerland
PublisherSpringer International Publishing
Pages248-258
Number of pages11
Volume9382
ISBN (Print)9783319257464
DOIs
Publication statusPublished - 15 Dec 2015
EventAdvances in Conceptual Modeling - ER 2015 Workshops AHA, CMS, EMoV, MoBID, MORE-BI, MReBA, QMMQ, and SCME, Stockholm, Sweden, October 19-22, 2015
Duration: 15 Dec 2015 → …

Publication series

NameLecture Notes in Computer Science

Conference

ConferenceAdvances in Conceptual Modeling
Period15/12/15 → …

Fingerprint

Process design
Industry

Cite this

Argyropoulos, N., Mouratidis, H., & Fish, A. (2015). Towards the derivation of secure business process designs. In Advances in Conceptual Modeling (Vol. 9382, pp. 248-258). (Lecture Notes in Computer Science). Switzerland: Springer International Publishing. https://doi.org/10.1007/978-3-319-25747-1_25
Argyropoulos, Nikolaos ; Mouratidis, Haralambos ; Fish, Andrew. / Towards the derivation of secure business process designs. Advances in Conceptual Modeling. Vol. 9382 Switzerland : Springer International Publishing, 2015. pp. 248-258 (Lecture Notes in Computer Science).
@inproceedings{48a99483e2524f8f81b80537a4076bb9,
title = "Towards the derivation of secure business process designs",
abstract = "Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.",
author = "Nikolaos Argyropoulos and Haralambos Mouratidis and Andrew Fish",
year = "2015",
month = "12",
day = "15",
doi = "10.1007/978-3-319-25747-1_25",
language = "English",
isbn = "9783319257464",
volume = "9382",
series = "Lecture Notes in Computer Science",
publisher = "Springer International Publishing",
pages = "248--258",
booktitle = "Advances in Conceptual Modeling",

}

Argyropoulos, N, Mouratidis, H & Fish, A 2015, Towards the derivation of secure business process designs. in Advances in Conceptual Modeling. vol. 9382, Lecture Notes in Computer Science, Springer International Publishing, Switzerland, pp. 248-258, Advances in Conceptual Modeling, 15/12/15. https://doi.org/10.1007/978-3-319-25747-1_25

Towards the derivation of secure business process designs. / Argyropoulos, Nikolaos; Mouratidis, Haralambos; Fish, Andrew.

Advances in Conceptual Modeling. Vol. 9382 Switzerland : Springer International Publishing, 2015. p. 248-258 (Lecture Notes in Computer Science).

Research output: Chapter in Book/Conference proceeding with ISSN or ISBNConference contribution with ISSN or ISBN

TY - GEN

T1 - Towards the derivation of secure business process designs

AU - Argyropoulos, Nikolaos

AU - Mouratidis, Haralambos

AU - Fish, Andrew

PY - 2015/12/15

Y1 - 2015/12/15

N2 - Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.

AB - Security is a critical aspect of business processes that organisations utilise to achieve their goals. Current works on secure business process design mainly focus on annotating existing process models with security related concepts. Meanwhile, little attention is given to the rationale and the alignment of such security choices to high-level organisational security goals. To that end, a goal-to-process transformation approach, with a clear security orientation, is introduced, as part of a wider framework. This transformation process, presented through an illustrative example, uses Secure Tropos goal models as an input to create intermediate, security-annotated process skeletons. These can be then refined, through a series of manual tasks, to create secure BPMN process models.

U2 - 10.1007/978-3-319-25747-1_25

DO - 10.1007/978-3-319-25747-1_25

M3 - Conference contribution with ISSN or ISBN

SN - 9783319257464

VL - 9382

T3 - Lecture Notes in Computer Science

SP - 248

EP - 258

BT - Advances in Conceptual Modeling

PB - Springer International Publishing

CY - Switzerland

ER -

Argyropoulos N, Mouratidis H, Fish A. Towards the derivation of secure business process designs. In Advances in Conceptual Modeling. Vol. 9382. Switzerland: Springer International Publishing. 2015. p. 248-258. (Lecture Notes in Computer Science). https://doi.org/10.1007/978-3-319-25747-1_25