Martin Gilje Jaatun

Monica Iovan

J. Syst. Softw., 2022

Guest Editorial: Special Issue on Interdisciplinary Cybersecurity.

[BibT_eX]

[DOI]

Simon Vrhovec

Béla Genge

J. Wirel. Mob. Networks Ubiquitous Comput. Dependable Appl., 2022

OpenIaC: open infrastructure as code - the network is my computer.

[BibT_eX]

[DOI]

J. Cloud Comput., 2022

Influencing the security prioritisation of an agile software development project.

[BibT_eX]

[DOI]

Guttorm Sindre

Comput. Secur., 2022

Automating Security in a Continuous Integration Pipeline.

[BibT_eX]

[DOI]

Sohrab Chalishhafshejani

Bao Khanh Pham

Andrea Neverdal Skytterholm

Proceedings of the 7th International Conference on Internet of Things, 2022

Needs and Challenges Concerning Cyber-risk Assessment in the Cyber-physical Smart Grid.

[BibT_eX]

[DOI]

Proceedings of the 17th International Conference on Software Technologies, 2022

Adapting Cyber-Risk Assessment for the Planning of Cyber-Physical Smart Grids Based on Industrial Needs.

[BibT_eX]

[DOI]

Proceedings of the Software Technologies - 17th International Conference, 2022

Exploring the Need for a CERT for the Norwegian Construction Sector.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Cybersecurity, 2022

A Survey on Infrastructure-as-Code Solutions for Cloud Development.

[BibT_eX]

[DOI]

Håkon Teppan

Lars Halvdan Flå

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

Blockchain Empowered and Self-sovereign Access Control System.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

Managing Digital Objects with Decentralised Identifiers based on NFT-like schema.

[BibT_eX]

[DOI]

Jiahui Geng

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

A Survey on Cybersecurity Barrier Management in Process Control Environments.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

Yet Another Blockchain-based Privacy-friendly Social Network.

[BibT_eX]

[DOI]

Lars Andreassen Jaatun

Anders Ringen

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

Privacy and security challenges for autonomous agents : A study of two social humanoid service robots.

[BibT_eX]

[DOI]

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2022

2021

Secure mobile cloud computing.

[BibT_eX]

[DOI]

Joanna Kolodziej

Concurr. Comput. Pract. Exp., 2021

Improving smart grid security through 5G enabled IoT and edge computing.

[BibT_eX]

[DOI]

Merkebu Zenebe Degefa

Concurr. Comput. Pract. Exp., 2021

Saving Nine Without Stitching in Time: Integrity Check After-the-fact.

[BibT_eX]

[DOI]

Racin Gudmestad

Siv Hilde Houmb

Proceedings of the 2nd International Conference on Societal Automation, 2021

The Quality Triage Method: Quickly Identifying User Stories with Quality Risks.

[BibT_eX]

[DOI]

Proceedings of the 2nd International Conference on Societal Automation, 2021

With a Little Help from Your Friends: Collaboration with Vendors During Smart Grid Incident Response Exercises.

[BibT_eX]

[DOI]

Proceedings of the EICC '21: European Interdisciplinary Cybersecurity Conference, 2021

DID-eFed: Facilitating Federated Learning as a Service with Decentralized Identities.

[BibT_eX]

[DOI]

Proceedings of the EASE 2021: Evaluation and Assessment in Software Engineering, 2021

Care and Feeding of Your Security Champion.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Cyber Situational Awareness, 2021

Tool-assisted Threat Modeling for Smart Grid Cyber Security.

[BibT_eX]

[DOI]

Lars Halvdan Flå

Proceedings of the International Conference on Cyber Situational Awareness, 2021

HSE and Cyber Security in Remote Work.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Cyber Situational Awareness, 2021

2020

Towards a Conceptual Framework for Security Requirements Work in Agile Software Development.

[BibT_eX]

[DOI]

Int. J. Syst. Softw. Secur. Prot., 2020

Towards a Secure DevOps Approach for Cyber-Physical Systems: An Industrial Perspective.

[BibT_eX]

[DOI]

Int. J. Syst. Softw. Secur. Prot., 2020

Enhancing accountability in the cloud.

[BibT_eX]

[DOI]

Int. J. Inf. Manag., 2020

IT Security Is From Mars, Software Security Is From Venus.

[BibT_eX]

[DOI]

IEEE Secur. Priv., 2020

A Trustworthy Blockchain-based Decentralised Resource Management System in the Cloud.

[BibT_eX]

[DOI]

Zhiming Zhao

Proceedings of the 26th IEEE International Conference on Parallel and Distributed Systems, 2020

Using Situational and Narrative Analysis for Investigating the Messiness of Software Security.

[BibT_eX]

[DOI]

Proceedings of the ESEM '20: ACM / IEEE International Symposium on Empirical Software Engineering and Measurement, 2020

Achieving "Good Enough" Software Security: The Role of Objectivity.

[BibT_eX]

[DOI]

Proceedings of the EASE '20: Evaluation and Assessment in Software Engineering, 2020

What Could Possibly Go Wrong? Smart Grid Misuse Case Scenarios.

[BibT_eX]

[DOI]

Christian Frøystad

Proceedings of the 2020 International Conference on Cyber Security and Protection of Digital Services, 2020

An Empirical Study of CERT Capacity in the North Sea.

[BibT_eX]

[DOI]

Lars Bodsberg

Tor Olav Grøtan

Marie Elisabeth Gaup Moe

Proceedings of the 2020 International Conference on Cyber Security and Protection of Digital Services, 2020

2019

Collaborative security risk estimation in agile software development.

[BibT_eX]

[DOI]

Laurie A. Williams

Inf. Comput. Secur., 2019

Is a Smarter Grid Also Riskier?

[BibT_eX]

[DOI]

Christian Frøystad

Proceedings of the Security and Trust Management - 15th International Workshop, 2019

5G as an Enabler for Secure IoT in the Smart Grid : Invited Paper.

[BibT_eX]

[DOI]

Proceedings of the First International Conference on Societal Automation, 2019

Threat modelling and agile software development: Identified practice in four Norwegian organisations.

[BibT_eX]

[DOI]

Proceedings of the 2019 International Conference on Cyber Security and Protection of Digital Services, 2019

A Cost-efficient Protocol for Open Blockchains.

[BibT_eX]

[DOI]

Chunlei Li

Proceedings of the 2019 International Conference on Cyber Security and Protection of Digital Services, 2019

Tackling the Cloud Forensic Problem While Keeping Your Eye on the GDPR.

[BibT_eX]

[DOI]

Magnus Westerlund

Proceedings of the 2019 IEEE International Conference on Cloud Computing Technology and Science (CloudCom), 2019

Architectural Risk Analysis in Agile Development of Cloud Software.

[BibT_eX]

[DOI]

Proceedings of the 2019 IEEE International Conference on Cloud Computing Technology and Science (CloudCom), 2019

Putting the "Account" into Cloud Accountability.

[BibT_eX]

Proceedings of the 9th International Conference on Cloud Computing and Services Science, 2019

The Security Intention Meeting Series as a way to increase visibility of software security decisions in agile development projects.

[BibT_eX]

[DOI]

Kalle Rindell

Proceedings of the 14th International Conference on Availability, Reliability and Security, 2019

Managing Security in Software: Or: How I Learned to Stop Worrying and Manage the Security Technical Debt.

[BibT_eX]

[DOI]

Kalle Rindell

Proceedings of the 14th International Conference on Availability, Reliability and Security, 2019

2018

Accountability Requirements in the Cloud Provider Chain.

[BibT_eX]

[DOI]

Nils Brede Moe

Børge Haugset

Symmetry, 2018

A Secure MANET Routing Protocol for Crisis Situations.

[BibT_eX]

[DOI]

Int. J. Syst. Softw. Secur. Prot., 2018

Security Incident Information Exchange for Cloud Service Provisioning Chains.

[BibT_eX]

[DOI]

Christian Frøystad

Cryptogr., 2018

Session details: SecSE 2018: International workshop on secure software engineering in DevOps and agile development.

[BibT_eX]

[DOI]

Proceedings of the 19th International Conference on Agile Software Development, 2018

Guiding Lights for Cloud Accountability.

[BibT_eX]

[DOI]

Proceedings of the 2018 International Conference on High Performance Computing & Simulation, 2018

Understanding challenges to adoption of the Microsoft elevation of privilege game.

[BibT_eX]

[DOI]

Proceedings of the 5th Annual Symposium and Bootcamp on Hot Topics in the Science of Security, 2018

Challenges and approaches of performing canonical action research in software security: research paper.

[BibT_eX]

[DOI]

Proceedings of the 5th Annual Symposium and Bootcamp on Hot Topics in the Science of Security, 2018

Understanding Challenges to Adoption of the Protection Poker Software Security Game.

[BibT_eX]

[DOI]

Proceedings of the Computer Security - ESORICS 2018 International Workshops, 2018

OWASP Top 10 - Do Startups Care?

[BibT_eX]

[DOI]

Halldis Sohoel

Colin Boyd

Proceedings of the 2018 International Conference on Cyber Security and Protection of Digital Services, 2018

Cyber Security Considerations for Self-healing Smart Grid Networks.

[BibT_eX]

[DOI]

Marie Elisabeth Gaup Moe

Per Erik Nordbo

Proceedings of the 2018 International Conference on Cyber Security and Protection of Digital Services, 2018

Challenges and Experiences with Applying Microsoft Threat Modeling in Agile Development Projects.

[BibT_eX]

[DOI]

Proceedings of the 25th Australasian Software Engineering Conference, 2018

Software Security Activities that Support Incident Management in Secure DevOps.

[BibT_eX]

[DOI]

Proceedings of the 13th International Conference on Availability, Reliability and Security, 2018

2017

Risk Centric Activities in Secure Software Development in Public Organisations.

[BibT_eX]

[DOI]

Nils Brede Moe

Int. J. Secur. Softw. Eng., 2017

A Lightweight Measurement of Software Security Skills, Usage and Training Needs in Agile Teams.

[BibT_eX]

[DOI]

Int. J. Secur. Softw. Eng., 2017

Accountability Requirements for the Cloud.

[BibT_eX]

[DOI]

Nils Brede Moe

Børge Haugset

Proceedings of the IEEE International Conference on Cloud Computing Technology and Science, 2017

DevOps for Better Software Security in the Cloud Invited Paper.

[BibT_eX]

[DOI]

Jesus Luna

Proceedings of the 12th International Conference on Availability, Reliability and Security, Reggio Calabria, Italy, August 29, 2017

2016

Current practices and challenges in industrial control organizations regarding information security incident management - Does size matter? Information security incident management in large and small industrial control organizations.

[BibT_eX]

[DOI]

Maria Bartnes Line

Int. J. Crit. Infrastructure Prot., 2016

Playing Protection Poker for Practical Software Security.

[BibT_eX]

[DOI]

Proceedings of the Product-Focused Software Process Improvement, 2016

I'll Trust You - for Now.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Internet of Things and Big Data, 2016

Security Incident Information Exchange for Cloud Services.

[BibT_eX]

[DOI]

Proceedings of the International Conference on Internet of Things and Big Data, 2016

Zebras and Lions: Better Incident Handling Through Improved Cooperation.

[BibT_eX]

[DOI]

Maria Bartnes

Proceedings of the Innovations for Community Services - 16th International Conference, 2016

Advanced Healthcare Services Enabled by a Computerized Pain Body Map.

[BibT_eX]

[DOI]

Ellen A. A. Jaatun

Proceedings of the 7th International Conference on Emerging Ubiquitous Systems and Pervasive Networks (EUSPN 2016)/The 6th International Conference on Current and Future Trends of Information and Communication Technologies in Healthcare (ICTH-2016)/Affiliated Workshops, 2016

Securing big data in the Cloud by protected mapping over multiple providers.

[BibT_eX]

[DOI]

Hongbing Cheng

Proceedings of the Digital Media Industry & Academic Forum, 2016

An Empirical Study on the Relationship between Software Security Skills, Usage and Training Needs in Agile Settings.

[BibT_eX]

[DOI]

Proceedings of the 11th International Conference on Availability, Reliability and Security, 2016

Cyber Security Incident Management in the Aviation Domain.

[BibT_eX]

[DOI]

Rainer Koelle

Proceedings of the 11th International Conference on Availability, Reliability and Security, 2016

2015

Software Security Maturity in Public Organisations.

[BibT_eX]

[DOI]

Proceedings of the Information Security - 18th International Conference, 2015

Could the Outsourcing of Incident Response Management Provide a Blueprint for Managing Other Cloud Security Requirements?

[BibT_eX]

[DOI]

Bob Duncan

Mark Whittington

Alfredo Ramiro Reyes Zúñiga

Proceedings of the Enterprise Security - Second International Workshop, 2015

Passing the Buck: Outsourcing Incident Response Management.

[BibT_eX]

[DOI]

Alfredo Ramiro Reyes Zúñiga

Proceedings of the 7th IEEE International Conference on Cloud Computing Technology and Science, 2015

Accountability Through Transparency for Cloud Customers.

[BibT_eX]

[DOI]

Julio Angulo

Simone Fischer-Hübner

Proceedings of the Cloud Computing and Services Science - 5th International Conference, 2015

Cloud Provider Transparency - A View from Cloud Customers.

[BibT_eX]

[DOI]

Proceedings of the CLOSER 2015, 2015

How Much Cloud Can You Handle?

[BibT_eX]

[DOI]

Proceedings of the 10th International Conference on Availability, Reliability and Security, 2015

2014

Expressing cloud security requirements for SLAs in deontic contract languages for cloud brokers.

[BibT_eX]

[DOI]

Per Håkon Meland

Humberto Nicolás Castejón Martínez

Astrid Undheim

Int. J. Cloud Comput., 2014

Information security incident management: Current practice as reported in the literature.

[BibT_eX]

[DOI]

Comput. Secur., 2014

Security Considerations for Tablet-based eHealth Applications.

[BibT_eX]

[DOI]

Ellen A. A. Jaatun

Russell Moser

Proceedings of the 2nd European Workshop on Practical Aspects of Health Informatics, 2014

Information Security Incident Management: Planning for Failure.

[BibT_eX]

[DOI]

Proceedings of the Eighth International Conference on IT Security Incident Management & IT Forensics, 2014

Towards Strong Accountability for Cloud Service Providers.

[BibT_eX]

[DOI]

Proceedings of the IEEE 6th International Conference on Cloud Computing Technology and Science, 2014

Learn to SWIM.

[BibT_eX]

[DOI]

Matias Krempel

Proceedings of the Ninth International Conference on Availability, 2014

Healthcare Services in the Cloud - Obstacles to Adoption, and a Way Forward.

[BibT_eX]

[DOI]

Proceedings of the Ninth International Conference on Availability, 2014

2013

"Security-Aware and Data Intensive Low-Cost Mobile Systems" Editorial.

[BibT_eX]

[DOI]

Mob. Networks Appl., 2013

Federated Identity Management - We Built It; Why Won't They Come?

[BibT_eX]

[DOI]

IEEE Secur. Priv., 2013

Beyond lightning: A survey on security challenges in cloud computing.

[BibT_eX]

[DOI]

Son Thanh Nguyen

Comput. Electr. Eng., 2013

Towards Improved Understanding and Holistic Management of the Cyber Security Challenges in Power Transmission Systems.

[BibT_eX]

[DOI]

Proceedings of the Availability, Reliability, and Security in Information Systems and HCI, 2013

Seeking Risks: Towards a Quantitative Risk Perception Measure.

[BibT_eX]

[DOI]

Proceedings of the Availability, Reliability, and Security in Information Systems and HCI, 2013

GPRS Security for Smart Meters.

[BibT_eX]

[DOI]

Geir M. Køien

Proceedings of the Availability, Reliability, and Security in Information Systems and HCI, 2013

Sink or SWIM: Information Security Requirements in the Sky.

[BibT_eX]

[DOI]

Tor Erlend Fægri

Proceedings of the 2013 International Conference on Availability, Reliability and Security, 2013

Towards an Ontology for Cloud Security Obligations.

[BibT_eX]

[DOI]

Proceedings of the 2013 International Conference on Availability, Reliability and Security, 2013

2012

Reference deployment models for eliminating user concerns on cloud security.

[BibT_eX]

[DOI]

J. Supercomput., 2012

Handling compromised components in an IaaS cloud installation.

[BibT_eX]

[DOI]

Aryan TaheriMonfared

J. Cloud Comput., 2012

The design of a redundant array of independent net-storages for improved confidentiality in cloud computing.

[BibT_eX]

[DOI]

Gansen Zhao

Athanasios V. Vasilakos

Stian Alapnes

Yong Tang

J. Cloud Comput., 2012

Special issue on security in cloud computing.

[BibT_eX]

[DOI]

Costas Lambrinoudakis

J. Cloud Comput., 2012

On the Adoption of Usage Control Technology in Collaborative Environments.

[BibT_eX]

[DOI]

Proceedings of the 12th International Conference on Innovative Internet Community Systems (I<sup>2</sup>CS 2012), 2012

Drizzle: The RAIN Prototype.

[BibT_eX]

[DOI]

Christian Askeland

Anders Salvesen

Proceedings of the 12th International Conference on Innovative Internet Community Systems (I<sup>2</sup>CS 2012), 2012

Threat Modeling of AMI.

[BibT_eX]

[DOI]

Humberto Nicolás Castejón Martínez

Maria Bartnes Line

Proceedings of the Critical Information Infrastructures Security, 2012

Accountability for cloud and other future Internet services.

[BibT_eX]

[DOI]

Siani Pearson

Vasilios Tountopoulos

Simone Fischer-Hübner

Proceedings of the 4th IEEE International Conference on Cloud Computing Technology and Science Proceedings, 2012

Thunder in the Clouds: Security challenges and solutions for federated Clouds.

[BibT_eX]

[DOI]

Proceedings of the 4th IEEE International Conference on Cloud Computing Technology and Science Proceedings, 2012

Expressing Cloud Security Requirements in Deontic Contract Languages.

[BibT_eX]

Proceedings of the CLOSER 2012 - Proceedings of the 2nd International Conference on Cloud Computing and Services Science, Porto, Portugal, 18, 2012

Usage Control in Inter-organisational Collaborative Environments - A Case Study from an Industry Perspective.

[BibT_eX]

[DOI]

Proceedings of the Multidisciplinary Research and Practice for Information Systems, 2012

Security SLAs - An Idea Whose Time Has Come?

[BibT_eX]

[DOI]

Astrid Undheim

Proceedings of the Multidisciplinary Research and Practice for Information Systems, 2012

Hunting for Aardvarks: Can Software Security Be Measured?

[BibT_eX]

[DOI]

Proceedings of the Multidisciplinary Research and Practice for Information Systems, 2012

2011

Not Ready for Prime Time: A Survey on Security in Model Driven Development.

[BibT_eX]

[DOI]

Int. J. Secur. Softw. Eng., 2011

Cyber security challenges in Smart Grids.

[BibT_eX]

[DOI]

Proceedings of the 2nd IEEE PES International Conference and Exhibition on "Innovative Smart Grid Technologies", 2011

BatCave: Adding security to the BATMAN protocol.

[BibT_eX]

[DOI]

Anne Gabrielle Bowitz

Espen Grannes Graarud

Lawrie Brown

Proceedings of the Sixth IEEE International Conference on Digital Information Management, 2011

Monitoring Intrusions and Security Breaches in Highly Distributed Cloud Environments.

[BibT_eX]

[DOI]

Aryan TaheriMonfared

Proceedings of the IEEE 3rd International Conference on Cloud Computing Technology and Science, 2011

As Strong as the Weakest Link: Handling Compromised Components in OpenStack.

[BibT_eX]

[DOI]

Aryan TaheriMonfared

Proceedings of the IEEE 3rd International Conference on Cloud Computing Technology and Science, 2011

A Cryptographic Protocol for Communication in a Redundant Array of Independent Net-storages.

[BibT_eX]

[DOI]

Gansen Zhao

Stian Alapnes

Proceedings of the IEEE 3rd International Conference on Cloud Computing Technology and Science, 2011

Security in Service Level Agreements for Cloud Computing.

[BibT_eX]

Astrid Undheim

Proceedings of the CLOSER 2011, 2011

Security in Model Driven Development: A Survey.

[BibT_eX]

[DOI]

Proceedings of the Sixth International Conference on Availability, 2011

Security SLAs for Federated Cloud Services.

[BibT_eX]

[DOI]

Proceedings of the Sixth International Conference on Availability, 2011

2010

Agile Software Development: The Straight and Narrow Path to Secure Software?

[BibT_eX]

[DOI]

Int. J. Secur. Softw. Eng., 2010

Deployment models: Towards eliminating security concerns from cloud computing.

[BibT_eX]

[DOI]

Proceedings of the 2010 International Conference on High Performance Computing & Simulation, 2010

Managing Emerging Information Security Risks during Transitions to Integrated Operations.

[BibT_eX]

[DOI]

Proceedings of the 43rd Hawaii International International Conference on Systems Science (HICSS-43 2010), 2010

The Road to Hell is Paved with Good Intentions: A Story of (In)secure Software Development.

[BibT_eX]

[DOI]

Richard Sasson

Proceedings of the ARES 2010, 2010

2009

A framework for incident response management in the petroleum industry.

[BibT_eX]

[DOI]

Int. J. Crit. Infrastructure Prot., 2009

Secure remote access to autonomous safety systems: A good practice approach.

[BibT_eX]

[DOI]

Tor Olav Grøtan

Int. J. Auton. Adapt. Commun. Syst., 2009

Fools Download Where Angels Fear to Tread.

[BibT_eX]

[DOI]

Havard Vegge

Finn Michael Halvorsen

Rune Walso Nergard

IEEE Secur. Priv., 2009

Privacy in a Semantic Cloud: What's Trust Got to Do with It?

[BibT_eX]

[DOI]

Proceedings of the Cloud Computing, First International Conference, CloudCom 2009, Beijing, 2009

Reusable Security Requirements for Healthcare Applications.

[BibT_eX]

[DOI]

Proceedings of the The Forth International Conference on Availability, 2009

2008

Security Requirements for the Rest of Us: A Survey.

[BibT_eX]

[DOI]

Per Håkon Meland

IEEE Softw., 2008

An Analysis of the Manufacturing Messaging Specification Protocol.

[BibT_eX]

[DOI]

Jan Tore Sørensen

Proceedings of the Ubiquitous Intelligence and Computing, 5th International Conference, 2008

Penetration Testing of OPC as Part of Process Control Systems.

[BibT_eX]

[DOI]

Håvard Husevåg Garnes

Petter Wedum

Proceedings of the Ubiquitous Intelligence and Computing, 5th International Conference, 2008

Learning from Software Security Testing.

[BibT_eX]

[DOI]

Proceedings of the First International Conference on Software Testing Verification and Validation, 2008

A Structured Approach to Incident Response Management in the Oil and Gas Industry.

[BibT_eX]

[DOI]

Proceedings of the Critical Information Infrastructure Security, 2008

Secure Safety: Secure Remote Access to Critical Safety Systems in Offshore Installations.

[BibT_eX]

[DOI]

Tor Olav Grøtan

Proceedings of the Autonomic and Trusted Computing, 5th International Conference, 2008

A Study of Information Security Practice in a Critical Infrastructure Application.

[BibT_eX]

[DOI]

Proceedings of the Autonomic and Trusted Computing, 5th International Conference, 2008

Covering Your Assets in Software Engineering.

[BibT_eX]

[DOI]

Proceedings of the The Third International Conference on Availability, 2008

2007

Extending 3G/WiMAX Networks and Services through Residential Access Capacity[Wireless Broadband Access].

[BibT_eX]

[DOI]

IEEE Commun. Mag., 2007

Survival by Deception.

[BibT_eX]

[DOI]

Jan Tore Sørensen

Proceedings of the Computer Safety, 2007

2006

Secure Fast Handover in an Open Broadband Access Network using Kerberos-style Tickets.

[BibT_eX]

[DOI]