Publications

10 results
2018
[10]Are Third-Party Libraries Secure? A Software Library Checker for Java (, , and ), In The 13th International Conference on Risks and Security of Internet and Systems, CRISIS 2018., Springer, LNCS, . [bibtex]
[9]Model-based Security Analysis of Feature-oriented Software Product Lines (, and ), In 17th International Conference on Generative Programming, GPCE 2018., Springer, LNCS, . [bibtex]
[8]System evolution through semi-automatic elicitation of security requirements: A Position Paper (, , , and ), In IFAC-PapersOnLine, volume 51, . [bibtex] [pdf] [doi]
[7]A framework for semi-automated co-evolution of security knowledge and system models (), In Journal of Systems and Software, volume 139, . [bibtex] [pdf] [doi]
[6]Taming Multi-Variability of Software Product Line Transformations (), In Fundamental Approaches to Software Engineering, 21st International Conference, FASE 2018, Held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2018, Thessaloniki, Greece, April 14-20, 2018, Proceedings., . [bibtex] [pdf] [doi]
2017
[5]Vulnerability Recognition by Execution Trace Differentiation (), In Softwaretechnik-Trends, volume 37, . [bibtex] [pdf]
[4]Model-based privacy and security analysis with CARiSMA (), In Proceedings of the 2017 11th Joint Meeting on Foundations of Software Engineering, ESEC/FSE 2017, Paderborn, Germany, September 4-8, 2017, . [bibtex] [pdf] [doi]
[3]What Works Better? A Study of Classifying Requirements (), In 25th IEEE International Requirements Engineering Conference, RE 2017, Lisbon, Portugal, September 4-8, 2017, . [bibtex] [pdf] [doi]
[2]The Choice of Code Review Process: A Survey on the State of the Practice (), In Product-Focused Software Process Improvement - 18th International Conference, PROFES 2017, Innsbruck, Austria, November 29 - December 1, 2017, Proceedings, . [bibtex] [pdf] [doi]
[1]From Secure Business Process Modeling to Design-Level Security Verification (), In 20th ACM/IEEE International Conference on Model Driven Engineering Languages and Systems, MODELS 2017, Austin, TX, USA, September 17-22, 2017, . [bibtex] [pdf] [doi]

Previous Project-related Publications

11 results
2012
[11]Enhancing security requirements engineering by organizational learning (, , and ), In Requirements Engineering, Published online., volume 17, . [bibtex] [doi]
2011
[10]Generische Refactoring-Spezifikation für Korrektheitsbeweise in mehrsichtigen Modellsprachen (), PhD thesis, Universität Paderborn, . [bibtex]
[9]Run-time security traceability for evolving systems (, and ), In Computer Journal, Oxford Univ. Press, volume 54, . [bibtex] [doi]
2010
[8]From goal-driven security requirements engineering to secure design ( and ), In International Journal of Intelligent Systems, volume 25, . [bibtex] [doi]
[7]Eliciting security requirements and tracing them to design: An integration of Common Criteria, heuristics, and UMLsec (, , , and ), In Requirements Engineering, volume 15, . [bibtex] [doi]
2009
[6]Modeling and Improving Information Flows in the Development of Large Business Applications ( and ), In Software Architecture Knowledge Management, Springer, volume NA, . [bibtex]
[5]Refinement-Preserving Co-evolution ( and ), In Formal Methods and Software Engineering, 11th International Conference on Formal Engineering Methods, ICFEM 2009, Rio de Janeiro, Brazil, December 9-12, 2009. (Breitman, Karin, Cavalcanti, Ana, eds.), Springer, volume 5885, . [bibtex] [doi]
2008
[4]Using event-driven process chains for model-driven development of business applications (, , and ), In International Journal of Business Process Integration and Management, volume 3, . [bibtex] [pdf] [doi]
2007
[3]Model-based Security (, and ), In Engineering of Distributed Information Systems using UMLsec. 29th International Conference on Software Engineering (ICSE 2007), ACM, . [bibtex]
2006
[2]Rationale as a by-product (), In Rationale Management in Software Engineering, Springer, . [bibtex] [doi]
1996
[1]Prototypes as assets, not toys. Why and how to extract knowledge from prototypes (), In Proceedings of IEEE 18th International Conference on Software Engineering, . [bibtex] [pdf] [doi]