European Commission logo
Deutsch Deutsch
CORDIS - Forschungsergebnisse der EU
CORDIS

VeriDevOps

Leistungen

Documents, reports (5)
Specification of security formal models

The report defines the specifications of the formalism to be used for formal specification of security properties We will investigate mainly timed automata and TCTL but we will adapt and extend them to serve the needs of the project

Report on the architecture and implementation evaluation - initial version

Evaluation of the software stacks components as well as of the VeriDevOps framework as a whole The deliverable is provided in two iterations the initial and refined The latter will also explore the integration of all components included in the architecture

State-of the Art Report

This deliverable will update the stateofthe art wrt to new approaches and technologies that appeared since the project proposal was submitted

Specification of patterns for security requirements

Based on the body of knowledge for requirements patterns this deliverable will elaborate specifics of the patterns for security formal properties patterns

VeriDevOps Framework Architecture and Roadmap

This report will define the initial vision of global architecture of the VeriDevOps tool sets tool chains interfaes and engineering artifacts The document will be accompanied with a roadmap for technology development The architecture and roadmap will be revised throughout the project duration at public release milestones

Other (5)
Patterns catalogue

The project will deliver a catalogue of patterns for formal specification of security properties

Tools for active prevention during development - Initial version

The deliverable will report on technologies for test generation from formal specifications The main focus in this deliverable will be in technologies for verifying that the implementation satisfies the security properties specified in the design phase In addition it will report on the tools for measuring the quality of the tests at specification andcode level

Requirements automated generation tool chain

This tool chain will combine the tools for extraction labeling training and classification of security requirements

Threat oracle engine specification, design and implementation initial version

Initial design and first prototype of the threat oracle engine allowing the scanning and classification of vulnerabilities at runtime

Security monitoring - security flaws detection mechanisms and tools initial version

Initial design and first prototype of the security monitoring solutions including rulebased detection mechanisms and AIbased anomaly detection mechanisms

Veröffentlichungen

Book chapters (10)
EARLY: A Tool for Real-Time Security Attack Detection

Autoren: Tanwir Ahmad, Dragos Truscan, Jüri Vain
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 225-251, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

Toward Anomaly Detection Using Explainable AI

Autoren: Manh-Dung Nguyen, Vinh-Hoa La, Wissam Mallouli, Ana Rosa Cavalli, Edgardo Montes de Oca
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 293-324, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

Vulnerability Detection and Response: Current Status and New Approaches

Autoren: Ángel Longueira-Romero, Rosa Iglesias, Jose Luis Flores, Iñaki Garitano
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 95-125, ISBN 978-3-031-42214-0
Herausgeber: Springer Cham

Metamorphic Testing for Verification and Fault Localization in Industrial Control Systems

Autoren: Gaadha Sudheerbabu, Tanwir Ahmad, Dragos Truscan, Jüri Vain
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) 127-159, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

Security Requirements Formalization with RQCODE

Autoren: Andrey Sadovykh, Nan Messe, Ildar Nigmatullin, Sophie Ebersold, Maria Naumcheva, Jean-Michel Bruel
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) 65-92
Herausgeber: Springer Cham

A Taxonomy of Vulnerabilities, Attacks, and Security Solutions in Industrial PLCs

Autoren: Eduard Paul Enoiu, Kejsi Biçoku, Cristina Seceleanu, Michael Felderer
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, ISBN 978-3-031-42214-0
Herausgeber: Springer Cham

Ctam: A Tool for Continuous Threat Analysis and Management

Autoren: Laurens Sion, Dimitri Van Landuyt, Koen Yskout, Stef Verreydt, Wouter Joosen
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 195-223, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

A Stream-Based Approach to Intrusion Detection

Autoren: Sylvain Hallé
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 253-291, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

Natural Language Processing with Machine Learning for Security Requirements Analysis: Practical Approaches

Autoren: Andrey Sadovykh, Kirill Yakovlev, Alexandr Naumchev, Vladimir Ivanov
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) 35-63, ISBN 978-3-031-42214-0
Herausgeber: Springer Cham

nteractive Application Security Testing with Hybrid Fuzzing and Statistical Estimators

Autoren: Ramon Barakat, Jasper von Blanckenburg, Roman Kraus, Fabian Jezuita, Steffen Lüdtke, Martin A. Schneider
Veröffentlicht in: CyberSecurity in a DevOps Environment From Requirements to Monitoring, 2023, Seite(n) Pages 161-191, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham

Conference proceedings (27)
Early Detection of Network Attacks Using Deep Learning

Autoren: Tanwir Ahmad, Dragos Truscan, Juri Vain, Ivan Porres
Veröffentlicht in: 2022
Herausgeber: IEEE

Message from the ITEQS 2022 Workshop Chairs

Autoren: Mehrdad Saadatmand, Dragos Truscan, Eduard Paul Enoiu
Veröffentlicht in: 2022 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW), 2022
Herausgeber: IEEE
DOI: 10.1109/icstw55395.2022.00006

Message from ITEQS 2023 Workshop Chairs

Autoren: Mehrdad Saadatmand,Dragos Truscan,Eduard Enoiu
Veröffentlicht in: 2023 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW), 2023
Herausgeber: IEEE
DOI: 10.1109/icstw58534.2023.00011

Towards Human-Like Automated Test Generation: Perspectives from Cognition and Problem Solving

Autoren: Eduard Paul Enoiu and Robert Feldt
Veröffentlicht in: International Conference on Cooperative and Human Aspects of Software Engineering 2021, Ausgabe International Conference on Cooperative and Human Aspects of Software Engineering 2021, 2021
Herausgeber: IEEE

A Two-phase Metamorphic Approach for Testing Industrial Control Systems

Autoren: Gaadha Sudheerbabu, Tanwir Ahmad, Filip Sebek, Dragos Truscan, Jüri Vain, and Ivan Porres
Veröffentlicht in: 2022
Herausgeber: IEEE
DOI: 10.48550/arxiv.2208.09261

Human-based Test Design versus Automated Test Generation: A Literature Review and Meta-Analysis

Autoren: Ted Kurmaku, Eduard Paul Enoiu, Musa Kumrija
Veröffentlicht in: 15th Innovations in Software Engineering Conference ISEC 2022, Ausgabe ISEC 2022, 2022
Herausgeber: ACM
DOI: 10.1145/3511430.3511433

Preliminary Results in Using Attention for Increasing Attack Identification Efficiency

Autoren: Tanwir Ahmad, Dragos Truscan
Veröffentlicht in: 16th IEEE International Conference on Software Testing, Verification and Validation (ICST) 2023, 2023
Herausgeber: IEEE
DOI: 10.1109/icstw58534.2023.00038

Specification of Passive Test Cases using anImproved T-EARS Language

Autoren: Daniel Flemström, Wasif Afzal, Eduard Paul Enoiu
Veröffentlicht in: Software Quality Days, Ausgabe SQD 2022, 2021, ISBN 978-3-031-04115-0
Herausgeber: Springer
DOI: 10.1007/978-3-031-04115-0_5

Security Testing and Resilience

Autoren: Ana Rosa Cavalli
Veröffentlicht in: 2021
Herausgeber: IEEE
DOI: 10.1109/icstw52544.2021.00031

Security Requirements as Code: Example from VeriDevOps Project

Autoren: Khaled Ismaeel, Alexandr Naumchev, Andrey Sadovykh, Dragos Truscan, Eduard Paul Enoiu, Cristina Seceleanu
Veröffentlicht in: 2021 IEEE 29th International Requirements Engineering Conference Workshops (, 2021
Herausgeber: IEEE
DOI: 10.1109/rew53955.2021.9714713

Security Requirements as Code:Example from VeriDevOps Project

Autoren: Vasily Varenov, Aydar Gabdrahmanov
Veröffentlicht in: 2021
Herausgeber: IEEE
DOI: 10.1109/rew53955.2021.00063

PyLC: A Framework for Transforming and Validating PLC Software using Python and Pynguin Test Generator

Autoren: Mikael Ebrahimi Salari, Eduard Paul Enoiu, Wasif Afzal, Cristina Seceleanu
Veröffentlicht in: The 38th ACM/SIGAPP Symposium On Applied Computing SAC23, 2023
Herausgeber: Association for Computing Machinery
DOI: 10.1145/3555776.3577698

A Model-Based Test Script Generation Framework for Embedded Software

Autoren: Muhammad Nouman Zafar, Wasif Afzal, Eduard Paul Enoiu, Athanasios Stratis , Ola Sellin
Veröffentlicht in: The 17th Workshop on Advances in Model Based Testing, Ausgabe A-MOST 2021, 2021
Herausgeber: IEEE

VeriDevOps Software Methodology: Security Verification and Validation for DevOps Practices

Autoren: Eduard Paul Enoiu; Dragos Truscan; Andrey Sadovykh; Wissam Mallouli
Veröffentlicht in: The 18th International Conference on Availability, Reliability and Security (ARES 2023), 2023
Herausgeber: ACM
DOI: 10.1145/3600160.3605054

Message from the ITEQS 2021 Workshop Chairs

Autoren: Saadatmand, M., Truscan, D. and Enoiu, E
Veröffentlicht in: 2021 IEEE International Conference on Software Testing, Verification and Validation Workshops (ICSTW), Ausgabe ITEQS2021 workshop, 2021, Seite(n) xii-xii
Herausgeber: IEEE
DOI: 10.1109/icstw52544.2021.00007

VeriDevOps: Automated Protection and Prevention to Meet Security Requirements in DevOps

Autoren: Andrey Sadovykh; Gunnar Widforss; Dragos Truscan; Eduard Paul Enoiu; Wissam Mallouli; Rosa Iglesias; Alessandra Bagnto; Olga Hendel
Veröffentlicht in: Design, Automation and Test in Europe Conference DATE 2021, 2021, Seite(n) p. 1330-1333
Herausgeber: IEEE
DOI: 10.23919/date51398.2021.9474185

NLP-based Testing and Monitoring for Security Checking (Project Report)

Autoren: Andrey Sadovykh, Zujany Salazar, Wissam Mallouli, Ana Rosa Cavalli, Dragos Truscan, Eduard Paul Enoiu, Rosa Iglesias and Olga Hendel
Veröffentlicht in: 2021
Herausgeber: IFIP/Springer

A Framework for the Attack Tolerance of Cloud Applications Based on Web Services

Autoren: Georges Ouffoue,Fatiha Zaidi,Fatiha Zaidi,Ana Rosa Cavalli,Huu Nghia Nguyen
Veröffentlicht in: 2020
Herausgeber: Electronics
DOI: 10.3390/electronics10010006

Towards a Workflow for Model-Based Testing of Embedded Systems

Autoren: Muhammad Nouman Zafar, Wasif Afzal, Eduard Paul Enoiu
Veröffentlicht in: International Workshop on Automating TEST Case Design, Selection, and Evaluation, Ausgabe A-TEST 2021, 2021
Herausgeber: ACM
DOI: 10.1145/3472672.3473956

Message from A-MOST 2023 Workshop Chairs

Autoren: Florian Lorber,Cristina Seceleanu,Uraz Cengiz Turker
Veröffentlicht in: 16th IEEE International Conference on Software Testing, Verification and Validation Workshops, ICSTW 2023, 2023
Herausgeber: IEEE
DOI: 10.1109/icstw58534.2023.00005

Monitoring Approaches for Security and Safety Analysis: Application to a Load Position System

Autoren: Zujany Salazar, Ana Rosa Cavalli, Wissam Mallouli, Filip Sebek, Fatiha Zaidi, Monika Ewa Rakoczy
Veröffentlicht in: 2022
Herausgeber: IEEE
DOI: 10.1109/icstw55395.2022.00021

Ethical AI-Powered Regression Test Selection

Autoren: Per Erik Strandberg, Mirgita Frasheri , Eduard Paul Enoiu
Veröffentlicht in: International Conference On Artificial Intelligence Testing, Ausgabe AITEST 2021, 2021
Herausgeber: IEEE
DOI: 10.1109/aitest52744.2021.00025

Industrial Scale Passive Testing with T-EARS

Autoren: Daniel Flemström, Henrik Jonsson, Eduard Paul Enoiu, Wasif Afzal
Veröffentlicht in: IEEE Conference on Software Testing, Validation and Verification 2021, Ausgabe ICST 2021, 2021
Herausgeber: IEEE

Security Requirements Classification into Groups Using NLP Transformers

Autoren: Vasily Varenov, Aydar Gabdrahmanov (Innopolis Uni) with acknowledgements to VeriDevOps
Veröffentlicht in: 2021
Herausgeber: IEEE
DOI: 10.1109/rew53955.2021.9714713

Choosing a Test Automation Framework for Programmable Logic Controllers in CODESYS Development Environment

Autoren: Mikael Salari, Eduard Enoiu, Wasif Afzal, Cristina Seceleanu
Veröffentlicht in: 14th IEEE International Conference on Software Testing, Verification and Validation Workshops, ICSTW, 2022
Herausgeber: Institute of Electrical and Electronics Engineers Inc
DOI: 10.1109/icstw55395.2022.00055

Applying Model-based Requirements Engineering in Three Large European Collaborative Projects: An Experience Report

Autoren: Andrey Sadovykh, Dragos Truscan, Hugo Bruneliere
Veröffentlicht in: 2021
Herausgeber: IEEE
DOI: 10.1109/re51729.2021.00040

Application de l'Ingénierie des Exigences basée sur les Modèles dans Trois Grands Projets Collaboratifs Européens : Un Rapport d'Expérience

Autoren: Andrey Sadovykh, Hugo Bruneliere, Dragos Truscan
Veröffentlicht in: INFORSID 2022 - 40ème Congrès INFormatique des ORganisations et Systèmes d'Information et de Décision, 2022
Herausgeber: HAL

Peer reviewed articles (3)
An iterative approach for model-based requirements engineering in large collaborative projects: A detailed experience report

Autoren: Andrey Sadovykh, Bilal Said, Dragos Truscan, Hugo Bruneliere
Veröffentlicht in: Science of Computer Programming, 2024, ISSN 0167-6423
Herausgeber: Elsevier BV
DOI: 10.1016/j.scico.2023.103047

A Novel Model for Vulnerability Analysis through Enhanced Directed Graphs and Quantitative Metrics

Autoren: Ángel Longueira-Romero Rosa Iglesias Jose Luis Flores Iñaki Garitano
Veröffentlicht in: MDPI, 2022, ISSN 1424-8220
Herausgeber: Multidisciplinary Digital Publishing Institute (MDPI)
DOI: 10.3390/s22062126

Machine Learning Techniques for Software Vulnerability Prediction: A comparative study

Autoren: Gul Jabeen, Sabit Rahim, Wasif Afzal, Dawar Khan, Aftab Ahmed Khan, Zahid Hussain, Tehmina Bibi
Veröffentlicht in: Applied Intelligence, Ausgabe 0924669X, 2022, ISSN 0924-669X
Herausgeber: Kluwer Academic Publishers
DOI: 10.1007/s10489-022-03350-5

Monographic books (1)
CyberSecurity in a DevOps Environment From Requirements to Monitoring

Autoren: Andrey Sadovykh,Dragos Truscan,Wissam Mallouli,Ana Rosa Cavalli,Cristina Seceleanu,Alessandra Bagnato
Veröffentlicht in: 2023, ISBN 978-3-031-42212-6
Herausgeber: Springer Cham
DOI: 10.1007/978-3-031-42212-6

Other (1)
Project Management in collaborative European research projects: analysis of H2020 VeriDevOps Management structure

Autoren: Gunnar Widforss, Olga Hendel
Veröffentlicht in: EARMA Digital Conference 2021, Ausgabe EARMA 2021, 2021
Herausgeber: EARMA

Suche nach OpenAIRE-Daten ...

Bei der Suche nach OpenAIRE-Daten ist ein Fehler aufgetreten

Es liegen keine Ergebnisse vor

Diese Seite teilen

Herunterladen

Letzte Aktualisierung: 27 Dezember 2023

Mein Booklet

Permalink: https://cordis.europa.eu/project/id/957212/results/de

European Union, 2024