journal-KramerMax.bib

@article{nguyen2015a,
  abstract = {Context: Model-Driven Security (MDS) is as a specialised Model-Driven Engineering research area for supporting the development of secure systems. Over a decade of research on \{MDS\} has resulted in a large number of publications. Objective: To provide a detailed analysis of the state of the art in MDS, a systematic literature review (SLR ) is essential. Method: We conducted an extensive \{SLR\} on MDS. Derived from our research questions, we designed a rigorous, extensive search and selection process to identify a set of primary \{MDS\} studies that is as complete as possible. Our three-pronged search process consists of automatic searching, manual searching, and snowballing. After discovering and considering more than thousand relevant papers, we identified, strictly selected, and reviewed 108 \{MDS\} publications. Results: The results of our \{SLR\} show the overall status of the key artefacts of MDS, and the identified primary \{MDS\} studies. For example, regarding security modelling artefact, we found that developing domain-specific languages plays a key role in many \{MDS\} approaches. The current limitations in each \{MDS\} artefact are pointed out and corresponding potential research directions are suggested. Moreover, we categorise the identified primary \{MDS\} studies into 5 significant \{MDS\} studies, and other emerging or less common \{MDS\} studies. Finally, some trend analyses of \{MDS\} research are given. Conclusion: Our results suggest the need for addressing multiple security concerns more systematically and simultaneously, for tool chains supporting the \{MDS\} development cycle, and for more empirical studies on the application of \{MDS\} methodologies. To the best of our knowledge, this \{SLR\} is the first in the field of Software Engineering that combines a snowballing strategy with database searching. This combination has delivered an extensive literature study on MDS.},
  author = {Phu H. Nguyen and Max Kramer and Jacques Klein and Yves Le Traon},
  doi = {http://dx.doi.org/10.1016/j.infsof.2015.08.006},
  issn = {0950-5849},
  journal = {Information and Software Technology},
  pages = {62--81},
  publisher = {Elsevier Science Publishers B. V.},
  tags = {journal},
  title = {{An extensive systematic review on the Model-Driven Development of secure systems}},
  url = {http://www.sciencedirect.com/science/article/pii/S0950584915001482},
  volume = {68},
  year = {2015},
  groups = {SDQ; KramerMax}
}