The conceptual model upon which CAIRIS is built.
How CAIRIS qualitatively and quantitively analyses and visualises the results of risk and task analysis
The motivation for building CAIRIS, including a summary of how it was built and evaluated, and some initial experiences applying it to real world case studies.
Illustrates how architectural and contextualised attack patterns can be used to formalise the elements of architectural attacks and possible defences.
Four guidelines that software engineering tools should incorporate to support the design and evolution of personas.
An approach for eliciting and visualising differences between trust expectations using persona cases, goal models, and CAIRIS.
Illustrates how CAIRIS can help devise scenarios that describe how design decisions lead to usability problems subsequently leading to misuse.
Shows how the CAIRIS web app and its models act as a vehicle for collaboration between usability and security engineers.
Using CAIRIS to support requirements analysis for a software repository for critical infrastructure software.
Using CAIRIS and the IRIS framework together to derive missing requirements for a UK water company’s information security policy following reports of StuxNet.
Using CAIRIS to support an approach for developing attacker personas which are both grounded and validated by open source data about attackers.
Using CAIRIS to support the use of concept mapping to both make sense of and improve the quality of requirements specifications.
A three-year study where CAIRIS supported the application of security and usability techniques in a research and development project.
Using CAIRIS to support an approach for developing assumption personas for design sessions during the late stages of an e-Science system’s design.