Syllabus

Mandatory requirements Modeling

Dan Pilone: UML 2.0 in a Nutshell, 2005. O'Reilly Media. ISBN: 0-596-00795-7. Read it on Safari (free with IFI IP address).

Mandatory requirements Refinement

Øystein Haugen, Knut Eilif Husa, Ranghild Runde, Ketil Stølen: STAIRS towards formal design with sequence diagrams, 2005. SoSyM, Springer Online. STAIRS article.

Ragnhild Runde, Øytsein Haugen, Ketil Stølen: The Pragmatics of STAIRS, 2006. Springer-Verlag. LNCS 4111. STAIRS tutorial.

Mandatory requirements Security Risk Assessment

Atle Refsdal, Bjørnar Solhaug, Ketil Stølen. Cyber-risk management. Springer, 2015. http://www.springer.com/gp/book/9783319235691.

Mass Soldal Lund, Bjørnar Solhaug, Ketil Stølen: Chapter 3 "A Guided Tour of the CORAS Method" in the book "Model-Driven Risk Analysis: The CORAS Approach", 2011. Springer. The chapter can be downloaded freely from the Springer webpage. http://www.springer.com/computer/swe/book/978-3-642-12322-1.

Mass Soldal Lund, Bjørnar Solhaug, Ketil Stølen: Risk Analysis of Changing and Evolving Systems Using CORAS, 2011. LNCS 6858, Springer. Pages 231-274. CORAS tutorial.

All lecture notes and group notes are mandatory

Obligatory exercises with solutions

All material from obligatory exercises is mandatory curriculum. This comprises the exercise, the solutions and any lectures given to explain the exercise.

Background material (not mandatory)

Bjørnar Solhaug, Dag Elgesem, Ketil Stølen: Why Trust is not proportional to Risk, 2007. Second International Conference on Availability, Reliability and Security (ARES'07).

Bjørnar Solhaug, Ketil Stølen: Uncertainty, subjectivity, trust and risk – how it all fits together, Proc. 7th International Workshop on Security and Trust Management (STM'11).

Rumbaugh, Jacobson, Booch: UML Reference Manual, Second Edition, 2004. Addison-Wesley. ISBN: 0321245628. Link to Addison-Wesley on this book.

The UML standard version 2.5 can be found here.