Reference : An Extensive Systematic Review on the Model-Driven Development of Secure Systems
Scientific journals : Article
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/23026
An Extensive Systematic Review on the Model-Driven Development of Secure Systems
English
Nguyen, Phu mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Kramer, Max mailto [Karlsruhe Institute of Technology]
Klein, Jacques mailto [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > >]
Le Traon, Yves mailto [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Sep-2015
Information & Software Technology
Elsevier
68
December 2015
62-81
Yes (verified by ORBilu)
International
0950-5849
[en] security ; model-driven ; review
[en] Context: Model-Driven Security (MDS) is as a specialised Model-Driven Engineering research area for supporting the development of secure systems. Over a decade of research on MDS has resulted in a large number of publications.
Objective: To provide a detailed analysis of the state of the art in MDS, a systematic literature review (SLR) is essential.
Method: We conducted an extensive SLR on MDS. Derived from our research questions, we designed a rigorous, extensive search and selection process to identify a set of primary MDS studies that is as complete as possible. Our three-pronged search process consists of automatic searching, manual searching, and snowballing. After discovering and considering more than thousand relevant papers, we identified, strictly selected, and reviewed 108 MDS publications.
Results: The results of our SLR show the overall status of the key artefacts of MDS, and the identified primary MDS studies. E.g. regarding security modelling artefact, we found that developing domain-specific languages plays a key role in many MDS approaches. The current limitations in each MDS artefact are pointed out and corresponding potential research directions are suggested. Moreover, we categorise the identified primary MDS studies into 5 significant MDS studies, and other emerging or less common MDS studies. Finally, some trend analyses of MDS research are given. Conclusion: Our results suggest the need for addressing multiple security concerns more systematically and simultaneously, for tool chains supporting the MDS development cycle, and for more empirical studies on the application of MDS methodologies. To the best of our knowledge, this SLR is the first in the field of Software Engineering that combines a snowballing strategy with database searching. This combination has delivered an extensive literature study on MDS.
SnT
Researchers ; Professionals ; Students ; General public ; Others
http://hdl.handle.net/10993/23026
10.1016/j.infsof.2015.08.006
http://www.sciencedirect.com/science/article/pii/S0950584915001482
FnR ; FNR783852 > Jacques Klein > MITER > Modeling, Composing and Testing of Security Concerns > 01/05/2011 > 30/04/2014 > 2010

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Open access
An Extensive Systematic Review on the Model-Driven Development of Secure Systems.pdfAuthor preprint2.04 MBView/Open

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.