The organisation

The Fraunhofer ISST aims at supporting our customers and partners with creating complex IT-systems as well as with implementing adequate solutions for secure provision of information according to the needs. Since the institute was founded in the year 1992, highly skilled ISST-researchers systematically developed industrial standards, reliable architectures and customized concepts. Furthermore, with COMPARC, the “Competence Center for Architectures and Processes” the Fraunhofer ISST has established a One-Stop-Shop for business process-management and IT-architectures. Being committed to the applied research, the Fraunhofer ISST is an intermediary between science and practice: Results from fundamental research are being implemented in industrial projects – from the idea to the realization. At the same time, experiences made at the institute are flowing back into scientific research and academic teaching.

Relevant skills/experience/technologies

Our research profits from previous work in the field of software tool building targeted at IT security analyses. There has been a significant amount of work on building practically usable model-level security analysis tools in the context of Model-based Security Engineering: mainly, we have presented a verification framework for UML models enriched with security properties through a UML profile called UMLsec. Supporting tools perform automated analysis on the UMLsec models for security and compliance properties.

Role in the project

The Fraunhofer ISST will participate as the leader of WP 8 to the project. Especially, the Fraunhofer ISST will coordinate the tool-kit implementation with all other WPs.

Interest in project results

The Fraunhofer ISST is specifically interested in the generalized version of the SECONOMICS framework and the tool support for the framework developed in WP8. The Fraunhofer ISST is also very interested in the risk and business modelling results of WPs 5 and 6.

Related Projects

The Key Personnel Jan Jürjens is research director of the Secure Change (EU FET IP) project and also group leader of the Fraunhofer ISST project “Architectures for Auditable Business Process Execution”. Both are dealing with the verification of security policies in context of complex IT-systems. Relevant previous projects also include a project funded by the resinsurance company Munich Re on the topic of “Return on Security Investment (RoSI)”.

Third Party: Technische Universität Dortmund: The participating group at Fraunhofer ISST (lead by Prof. Jürjens) is closely cooperating with Prof. Jürjens' research group at Technische Universität Dortmund (TUD). To exploit the relevant expertise in that group for the planned project, TUD will act as third party to Fraunhofer ISST. Technische Universität Dortmund is a university in Dortmund, North Rhine-Westphalia, Germany with over 20,000 students, and over 3,000 staff. Founded in 1966, it is situated in the Ruhr area, the fourth largest urban area in Europe. The Department of Computer Science has started its work in 1972, at that time one of the first departments of this kind. Since then it has always been one of the largest computer science departments in Germany. Today, more than 2 000 Students are enrolled. In the latest research ranking by the German Science Foundation (DFG) it came out first in terms of research funding received by DFG, jointly with Karlsruhe Institute of Technology (KIT). With 22 professors and a research and teaching staff of about 120 employees the department covers a broad spectrum of scientific fields. The current research areas can be clustered into four broader research subjects:

· Software, Security and Verification

· Distributed and Embedded Systems

· Intelligent Systems

· Algorithmic and Formal Foundations

Key Personnel

Prof. Dr. Jan Jürjens (TUD and ISST) is Professor for Software Engineering at Technical University Dortmund (Germany), Scientific Coordinator "Enterprise Engineering" at Fraunhofer Institute for Software and Systems Engineering ISST (Dortmund), and Senior Member of Robinson College (Univ. Cambridge, UK). He supervises a research group consisting of 2 Postdocs and 10 PhD students. He is Scientific Director of an Integrated Project financed by the EU. He has been PI of various projects with a total budget of over 4 Million EUR, often in cooperation with industry (e.g. Microsoft Research (Cambridge)). Previous positions include a Royal Society Industrial Fellowship at Microsoft Research Cambridge and a non-stipendiary Research Fellowship at Robinson College (Univ. Cambridge). Prof. Jürjens holds a Doctor of Philosophy in Computing from University of Oxford and is author of "Secure Systems Development with UML" (Springer, 2005; Chinese translation 2009) and various publications mostly on software engineering and IT security, totalling over 2000 citations. More information: .