Sciweavers

CAISE
2015
Springer

Modelling and Analysing Socio-Technical Systems

8 years 6 months ago
Modelling and Analysing Socio-Technical Systems
methods often abstract away the internal structure of an organisation and ignore human factors when modelling and assessing attacks. In our work we model all relevant levels of socio-technical systems, and propose evaluation techniques for analysing the security properties of the model. Our approach simplifies the identification of possible attacks and provides qualified assessment and ranking of attacks based on the expected impact. We demonstrate our approach on a home-payment system. The system is specifically designed to help elderly or disabled people, who may have difficulties leaving their home, to pay for some services, e.g., care-taking or rent. The payment is performed using the remote control of a television box with a contactless payment card (see Figure 1). When a transfer is initiated, a password is needed in order to authenticate the owner of the card.
Zaruhi Aslanyan, Marieta Georgieva Ivanova, Flemmi
Added 17 Apr 2016
Updated 17 Apr 2016
Type Journal
Year 2015
Where CAISE
Authors Zaruhi Aslanyan, Marieta Georgieva Ivanova, Flemming Nielson, Christian W. Probst
Comments (0)