The Quality Engineering Competence Centre

Living Security Models

Living Security Models aim at the configuration and monitoring of security services in open systems based on domain-level models. This primarily addresses the needs of security policy makers responsible for the specification of security policies in the context of business processes and organisational structures.

This goal is achieved with a framework operating according to the principles of model-based security engineering. According to this paradigm, the functional behaviour of service oriented systems is captured in high-level models and enhanced by security patterns. The specification is translated into executable security artefacts that configure security components in target systems. The main objectives of Living Security Models are

  • the integration of privacy concerns,
  • the integration of concepts for monitoring policy compliance
  • leveraging the benefits of architectures offering security functionality as reusable services


Industry Partner:

Duration: October 2009 – September 2013

Contact: Basel Katt