Jose Fran. Ruiz scite author profile

Jose Fran. Ruiz

5Publications

29Citation Statements Received

61Citation Statements Given

How they've been cited

How they cite others

Affiliations

Atos (Spain), Universidad de Málaga, Fraunhofer Institute for Secure Information Technology

Publications

Order By: Most citations

A Methodology for the Analysis and Modeling of Security Threats and Attacks for Systems of Embedded Components

Ruiz

Harjani

Maña

et al. 2012

View full text Add to dashboard Cite

The development of systems based on embedded components is a challenging task because of their distributed, reactive and real-time nature. From a security point of view, embedded devices are basically systems owned by a certain entity, used frequently as part of systems owned by other entities and operated in a potentially hostile environment. The development of security-enhanced systems of embedded components is a difficult task due to different types of threats that may affect such systems, and because the security in systems of embedded devices is currently added as an additional feature when the development is advanced, or avoided as a superfluous characteristic. We present in this paper a methodology for the analysis and modeling of threats and attacks for systems of embedded components. The Intruder Model allows us to describe possible actions a potential intruder can accomplish, depending on his/her capabilities, resources, etc. Using this information, we can define a Threat Model that will specify the threats and attacks that affect different security properties in specific domains.

show abstract

Security knowledge representation artifacts for creating secure IT systems

Ruiz

Arjona

Maña

et al. 2017

Computers & Security

View full text Add to dashboard Cite

A Holistic Approach for Privacy Requirements Analysis: An Industrial Case Study

Gharib

Giorgini

Salnitri

et al. 2020

View full text Add to dashboard Cite

Development of Applications Based on Security Patterns

Serrano

Ruiz

Muñoz

et al. 2009

View full text Add to dashboard Cite

Current approaches for software development fail in the integration of security aspects. Usually, this is because of the software complexity and the specific expertise needed for the integration of modern security solutions. In this paper we present the SERENITY Project which proposes a framework addressing this issue. SERENITY is based on the separation of the development of security solutions from the development of secure software supported by these security solutions. Both developments, security solutions and secure applications, are centered on the use of libraries of precise descriptions of reusable security solutions stored in the form of security patterns. This approach fits very well with new emerging scenarios such as ambient intelligence, ubiquitous computing, grids, etc. In this paper we present the development of a secure application based on these ideas, in order to do that, we introduce an Application Programming Interface (API) specially designed for use SERENITY advantages.

show abstract

A Holistic Approach for Privacy Protection in E-Government

Angelopoulos

Diamantopoulou

Mouratidis

et al. 2017

View full text Add to dashboard Cite

Improving e-government services by using data more effectively is a major focus globally. It requires Public Administrations to be transparent, accountable and provide trustworthy services that improve citizen confidence. However, despite all the technological advantages on developing such services and analysing security and privacy concerns, the literature does not provide evidence of frameworks and platforms that enable privacy analysis, from multiple perspectives, and take into account citizens' needs with regards to transparency and usage of citizens information. This paper presents the VisiOn (Visual Privacy Management in User Centric Open Requirements) platform, an outcome of a H2020 European Project. Our objective is to enable Public Administrations to analyse privacy and security from different perspectives, including requirements, threats, trust and law compliance. Finally, our platform-supported approach introduces the concept of Privacy Level Agreement (PLA) which allows Public Administrations to customise their privacy policies based on the privacy preferences of each citizen

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Jose Fran. Ruiz

A Methodology for the Analysis and Modeling of Security Threats and Attacks for Systems of Embedded Components

Security knowledge representation artifacts for creating secure IT systems

A Holistic Approach for Privacy Requirements Analysis: An Industrial Case Study

Development of Applications Based on Security Patterns

A Holistic Approach for Privacy Protection in E-Government

Contact Info

Product

Resources

About