Security and privacy requirements engineering for human centric IoT systems using eFRIEND and Isabelle

Kammueller, Florian and Augusto, Juan Carlos and Jones, Simon (2017) Security and privacy requirements engineering for human centric IoT systems using eFRIEND and Isabelle. In: IEEE/ACIS 15th International Conference on Software Engineering Research, Management and Application, SERA2017, 07-09 Jun 2017, University of Greenwich, London, United Kingdom.

[img]
Preview
PDF - Final accepted version (with author's formatting)
Download (599kB) | Preview

Abstract

In this paper, we combine a framework for ethical requirement elicitation eFRIEND with automated reasoning. To provide trustworthy and secure IoT for vulnerable users in healthcare scenarios, we need to apply ethics to arrive at suitable system requirements. In order to map those to technical system requirements, we employ high level logical modeling using dedicated Isabelle frameworks for (1) infrastructures with human actors and security policies, (2) attack tree analysis, and (3) security protocol analysis. Following this outline, we apply these frameworks to a case study for supporting Security and Privacy when diagnosing Alzheimer’s patients with smartphone and sensor technology

Item Type: Conference or Workshop Item (Paper)
Research Areas: A. > School of Science and Technology > Computer Science
Item ID: 21977
Notes on copyright: © 2017 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.
Useful Links:
Depositing User: Florian Kammueller
Date Deposited: 13 Jun 2017 09:46
Last Modified: 07 Dec 2018 08:21
URI: http://eprints.mdx.ac.uk/id/eprint/21977

Actions (login required)

Edit Item Edit Item

Full text downloads (NB count will be zero if no full text documents are attached to the record)

Downloads per month over the past year