Business Process Model and Notation for Forensic-Ready Software
Systems

D 2022

Business Process Model and Notation for Forensic-Ready Software Systems

DAUBNER, Lukáš, Raimundas MATULEVIČIUS, Barbora BÜHNOVÁ a Tomáš PITNER

Základní údaje

Originální název

Business Process Model and Notation for Forensic-Ready Software Systems

Autoři

DAUBNER, Lukáš (203 Česká republika, garant, domácí), Raimundas MATULEVIČIUS, Barbora BÜHNOVÁ (203 Česká republika, domácí) a Tomáš PITNER (203 Česká republika, domácí)

Vydání

Setúbal, Portugal, Proceedings of the 17th International Conference on Evaluation of Novel Approaches to Software Engineering, od s. 95-106, 12 s. 2022

Nakladatel

SciTePress

Další údaje

Jazyk

angličtina

Typ výsledku

Stať ve sborníku

Obor

10200 1.2 Computer and information sciences

Utajení

není předmětem státního či obchodního tajemství

Forma vydání

elektronická verze "online"

Odkazy

URL

Kód RIV

RIV/00216224:14330/22:00125901

Organizační jednotka

Fakulta informatiky

ISBN

978-989-758-568-5

ISSN

DOI

http://dx.doi.org/10.5220/0011041000003176

UT WoS

000814765400008

Klíčová slova anglicky

Forensic Readiness; Forensic-Ready Software Systems; Modelling; BPMN; Software Design

Štítky

best, core_B, firank_B

Příznaky

Mezinárodní význam, Recenzováno

Změněno: 1. 2. 2023 14:24, RNDr. Lukáš Daubner, Ph.D.

Anotace

V originále

The design and development of secure systems is an important and challenging task. However, such systems should also be prepared for eventual disputes or occurrences of a security incident. To solve this, forensic-ready software systems are, by-design, prepared to assist in the forensic investigation and to provide on-point data with high evidentiary value. However, software engineering support for the systematic development of such software systems is rather sparse. This paper tackles the problem by introducing novel modelling notation, called BPMN for Forensic-Ready Software Systems (BPMN4FRSS), including its syntax and semantics. The notation aims to capture the forensic-ready controls and enable reasoning over them, primarily focusing on potential digital evidence. Importantly, it is made to support forensic readiness oriented risk management decisions. The approach is then demonstrated in a scenario where the controls, which mitigate security and business risks, are properly rep resented.

Návaznosti

CZ.02.1.01/0.0/0.0/16_019/0000822, interní kód MU
(Kód CEP: EF16_019/0000822)

Název: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur (Akronym: C4e)

Investor: Ministerstvo školství, mládeže a tělovýchovy ČR, Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur, PO 1 Posilování kapacit pro kvalitní výzkum

EF16_019/0000822, projekt VaV

Název: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur

Citovat

DAUBNER, Lukáš, Raimundas MATULEVIČIUS, Barbora BÜHNOVÁ a Tomáš PITNER. Business Process Model and Notation for Forensic-Ready Software Systems. Online. In Proceedings of the 17th International Conference on Evaluation of Novel Approaches to Software Engineering. Setúbal, Portugal: SciTePress, 2022, s. 95-106. ISBN 978-989-758-568-5. Dostupné z: https://dx.doi.org/10.5220/0011041000003176.

@inproceedings{1856737,
   author = {Daubner, Lukáš and Matulevičius, Raimundas and Bühnová, Barbora and Pitner, Tomáš},
   address = {Setúbal, Portugal},
   booktitle = {Proceedings of the 17th International Conference on Evaluation of Novel Approaches to Software Engineering},
   doi = {http://dx.doi.org/10.5220/0011041000003176},
   keywords = {Forensic Readiness; Forensic-Ready Software Systems; Modelling; BPMN; Software Design},
   howpublished = {elektronická verze "online"},
   language = {eng},
   location = {Setúbal, Portugal},
   isbn = {978-989-758-568-5},
   pages = {95-106},
   publisher = {SciTePress},
   title = {Business Process Model and Notation for Forensic-Ready Software Systems},
   url = {https://www.scitepress.org/PublicationsDetail.aspx?ID=WfdKUNdsvxM=},
   year = {2022}
}

TY  - JOUR
ID  - 1856737
AU  - Daubner, Lukáš - Matulevičius, Raimundas - Bühnová, Barbora - Pitner, Tomáš
PY  - 2022
TI  - Business Process Model and Notation for Forensic-Ready Software Systems
PB  - SciTePress
CY  - Setúbal, Portugal
SN  - 9789897585685
KW  - Forensic Readiness
KW  - Forensic-Ready Software Systems
KW  - Modelling
KW  - BPMN
KW  - Software Design
UR  - https://www.scitepress.org/PublicationsDetail.aspx?ID=WfdKUNdsvxM=
N2  - The design and development of secure systems is an important and challenging task. However, such systems should also be prepared for eventual disputes or occurrences of a security incident. To solve this, forensic-ready software systems are, by-design, prepared to assist in the forensic investigation and to provide on-point data with high evidentiary value. However, software engineering support for the systematic development of such software systems is rather sparse. This paper tackles the problem by introducing novel modelling notation, called BPMN for Forensic-Ready Software Systems (BPMN4FRSS), including its syntax and semantics. The notation aims to capture the forensic-ready controls and enable reasoning over them, primarily focusing on potential digital evidence. Importantly, it is made to support forensic readiness oriented risk management decisions. The approach is then demonstrated in a scenario where the controls, which mitigate security and business risks, are properly rep resented.
ER  -

DAUBNER, Lukáš, Raimundas MATULEVIČIUS, Barbora BÜHNOVÁ a Tomáš PITNER. Business Process Model and Notation for Forensic-Ready Software Systems. Online. In \textit{Proceedings of the 17th International Conference on Evaluation of Novel Approaches to Software Engineering}. Setúbal, Portugal: SciTePress, 2022, s.~95-106. ISBN~978-989-758-568-5. Dostupné z: https://dx.doi.org/10.5220/0011041000003176.

Podrobný výpis o publikaci