The SecureChange project aims to develop techniques and tools that ensure "lifelong" compliance to evolving security, privacy and dependability requirements for a long-running evolving software system. To do this for security requirements (Work Package 3), the project demonstrates on the evolving design of an air-traffic management system at the Rome Airport, that some assumptions about the trust delegations do not hold anymore, which require introducing new components to mitigate those risks exposed in the existing design. As a result of the work, we have delivered a model-based change pattern detector and a tool to support the argument-based formal reasoning of evolving security requirements. portrait
Email: y.yu@open.ac.uk Office: +44 (0) 1908 6 55562