@inproceedings{e041dfcf06de428d988cbc1256197010,
title = "Augmented enterprise models as a foundation for generating security-related software: Requirements and objectives",
abstract = "The research presented in this paper is aimed at developing a holistic modelling method that comprehensively considers and integrates technical, organizational, behavioral and business aspects - all crucial to create and manage secure IT systems. Our method relies on Multi-perspective Enterprise Modeling (MEMO) and extends it to support security concepts. The focus of this paper is twofold: 1. identifying opportunities for using enterprise models for generating security related code; 2. defining requirements, which should be satisfied by the modelling method in order to support such security-related code generation. In order to identify opportunities for code generation, we apply a technique for developing domain specific modelling languages (DSML) that is chiefly based on a structured analysis of use scenarios including prototypical diagrams. It is supplemented by work found in literature and validated with practitioners. Our analysis results in the identification of three areas in which MEMO IT security models can be used for automatic creation of code: access control, report generation and encryption and in 9 corresponding requirements that the modelling language should satisfy.",
keywords = "DSML, enterprise modeling, IT security, MEMO, model driven security, security code generation",
author = "Anat Goldstein and Ulrich Frank",
year = "2012",
month = dec,
day = "1",
doi = "https://doi.org/10.1145/2422498.2422506",
language = "الإنجليزيّة",
isbn = "9781450318068",
series = "Proceedings of the Workshop on Model-Driven Security, MDsec 2012",
booktitle = "Proceedings of the Workshop on Model-Driven Security, MDsec 2012",
note = "Workshop on Model-Driven Security, MDsec 2012 ; Conference date: 01-10-2012 Through 05-10-2012",
}