@inbook{0b7579ae2bec49bfbe9ce7ab39abb406,
title = "A Framework for Modelling Security Architectures in Services Ecosystems",
abstract = "We develop a compositional framework for modelling security and business architectures based on rigorous underlying mathematical systems modelling technology. We explain the basic architectural model, which strictly separates declarative specification from operational implementation, and show architectures can interact by composition, substitution, and stacking. We illustrate these constructions using a running example based on airport security and an example based on (cloud-based) outsourcing, indicating how our approach can illustrate how security controls can fail or be circumvented in these cases. We explain our motivations from mathematical modelling and security economics, and conclude by indicating how to aim to develop a decision-support technology",
author = "Matthew Collinson and David Pym and Barry Taylor",
year = "2012",
doi = "10.1007/978-3-642-33427-6_5",
language = "English",
isbn = "978-3-642-33426-9",
volume = "7592",
series = "Lecture Notes in Computer Science ",
publisher = "Springer ",
pages = "64--79",
editor = "{De Paoli}, {Flavio } and Pimentel, {Ernesto } and Gianluigi Zavaratto",
booktitle = "Service-Oriented and Cloud Computing",
note = "First European Conference, ESOCC 2012 ; Conference date: 19-09-2012 Through 21-09-2012",
}