Publications

*PUBLICATIONS

A full list of my publications

This list of publications allows you to export the single entries in the BibTeX format and, when ever I am allowed, I added a link to the corresponding preprint for download.

2024

Lohr, Matthias; Peldszus, Sven; Jürjens, Jan; Staab, Steffen

Fast, Favorable, and Fair Blockchain-based Exchange of Digital Goods using State Channels Proceedings Article Forthcoming

In: Proceedings of the 6th IEEE International Conference on Blockchain and Cryptocurrency (ICBC), Forthcoming.

Links | BibTeX

Peldszus, Sven; Bürger, Jens; Jürjens, Jan

UMLsecRT: Reactive Security Monitoring of Java Applications With Round-Trip Engineering Journal Article

In: IEEE Transactions on Software Engineering (TSE), vol. 50, no. 1, pp. 16–47, 2024.

Abstract | Links | BibTeX

@article{PBJ2024,

title = {UMLsecRT: Reactive Security Monitoring of Java Applications With Round-Trip Engineering},

author = {Sven Peldszus and Jens Bürger and Jan Jürjens},

url = {https://peldszus.com/wp-content/uploads/2024/01/2024-TSE-UMLsecRT-preprint.pdf},

doi = {10.1109/TSE.2023.3326366},

year  = {2024},

date = {2024-01-01},

journal = {IEEE Transactions on Software Engineering (TSE)},

volume = {50},

number = {1},

pages = {16--47},

abstract = {Today's software systems tend to be long-living and often process security-critical data, so keeping up with ever-changing security measures, attacks, and mitigations is critical to maintaining their security. While it has become common practice to consider security aspects during the design of a system, OWASP still identifies insecure design as one of the top 10 threats to security. Furthermore, even if the planned design is secure, verifying that the planned security assumptions hold at run-time and investigating any violations that may have occurred is cumbersome. In particular, the configuration of run-time monitors such as the Java Security Manager, which could enforce design-time security assumptions, is non-trivial and therefore used in practice rarely. To address these challenges, we present UMLsecRT for automatically supporting model-based security engineering with run-time monitoring of design-time security specifications and round-trip engineering for propagating run-time observations to the design level. Following the established security-by-design approach UMLsec, security experts annotate system models with security properties that UMLsecRT automatically synchronizes with corresponding source code annotations for the automatic configuration of UMLsecRT's run-time monitor. To this end, UMLecRT monitors these security properties at run-time without additional effort to specify monitoring policies. Developers can define mitigations for attacks detected at run-time in advance by adjusting the automatically synchronized annotations at implementation time. Triggered by a security violation, UMLsecRT can adapt the design-time models based on run-time findings to facilitate the investigation of security violations. We evaluated UMLsecRT concerning its effectiveness and applicability to security violations extracted from real-world attacks and the DaCapo benchmark, conducted user studies on the usability of the adapted models and the feasibility of UMLsecRT in practice, especially concerning countermeasures, and investigated the scalability of UMLsecRT. To study the applicability of the whole development process, we applied UMLsecRT in two case studies to the Eclipse Secure Storage and the electronic health record system iTrust.},

keywords = {},

pubstate = {published},

tppubtype = {article}

}

Today's software systems tend to be long-living and often process security-critical data, so keeping up with ever-changing security measures, attacks, and mitigations is critical to maintaining their security. While it has become common practice to consider security aspects during the design of a system, OWASP still identifies insecure design as one of the top 10 threats to security. Furthermore, even if the planned design is secure, verifying that the planned security assumptions hold at run-time and investigating any violations that may have occurred is cumbersome. In particular, the configuration of run-time monitors such as the Java Security Manager, which could enforce design-time security assumptions, is non-trivial and therefore used in practice rarely. To address these challenges, we present UMLsecRT for automatically supporting model-based security engineering with run-time monitoring of design-time security specifications and round-trip engineering for propagating run-time observations to the design level. Following the established security-by-design approach UMLsec, security experts annotate system models with security properties that UMLsecRT automatically synchronizes with corresponding source code annotations for the automatic configuration of UMLsecRT's run-time monitor. To this end, UMLecRT monitors these security properties at run-time without additional effort to specify monitoring policies. Developers can define mitigations for attacks detected at run-time in advance by adjusting the automatically synchronized annotations at implementation time. Triggered by a security violation, UMLsecRT can adapt the design-time models based on run-time findings to facilitate the investigation of security violations. We evaluated UMLsecRT concerning its effectiveness and applicability to security violations extracted from real-world attacks and the DaCapo benchmark, conducted user studies on the usability of the adapted models and the feasibility of UMLsecRT in practice, especially concerning countermeasures, and investigated the scalability of UMLsecRT. To study the applicability of the whole development process, we applied UMLsecRT in two case studies to the Eclipse Secure Storage and the electronic health record system iTrust.

Peldszus, Sven

Security Compliance in Model-Driven Software Development Book Chapter

In: Bodden, Eric; Felderer, Michael; Hasselbring, Wilhelm; Herber, Paula; Koziolek, Heiko; Lilienthal, Carola; Matthes, Florian; Prechelt, Lutz; Rumpe, Bernhard; Schaefer, Ina (Ed.): Ernst Denert Award for Software Engineering 2022: Practice Meets Foundations, pp. 73–104, Springer, 2024, ISBN: 978-3-031-44412-8, (open access).

Abstract | Links | BibTeX

@inbook{Peldszus2024,

title = {Security Compliance in Model-Driven Software Development},

author = {Sven Peldszus},

editor = {Eric Bodden and Michael Felderer and Wilhelm Hasselbring and Paula Herber and Heiko Koziolek and Carola Lilienthal and Florian Matthes and Lutz Prechelt and Bernhard Rumpe and Ina Schaefer},

url = {https://doi.org/10.1007/978-3-031-44412-8_4},

doi = {10.1007/978-3-031-44412-8_4},

isbn = {978-3-031-44412-8},

year  = {2024},

date = {2024-01-01},

urldate = {2024-01-01},

booktitle = {Ernst Denert Award for Software Engineering 2022: Practice Meets Foundations},

pages = {73–104},

publisher = {Springer},

abstract = {To ensure the security of a software system, it is vital to keep up with changing security precautions, attacks, and mitigations. Although model-based development enables addressing security already at design-time, design models are often inconsistent with the implementation or among themselves. Such inconsistencies hinder the effective realization and verification of secure software systems. In addition, variants of software systems are another burden to developing secure systems. Vulnerabilities must be identified and fixed on all variants or else attackers could be well-guided in attacking unfixed variants. To ensure security in this context, in the thesis (Peldszus, Security Compliance in Model-driven Development of Software Systems in Presence of Long-Term Evolution and Variants. Springer, Berlin; 2022), we present GRaViTY, an approach that allows security experts to specify security requirements on the most suitable system representation. To preserve security, based on continuous automated change propagation, GRaViTY automatically checks all system representations against these security requirements. To systematically improve the object-oriented design of a software-intensive system, GRaViTY provides security-preserving refactorings. For both continuous security compliance checks and refactorings, we show the application to variant-rich software systems. To support legacy systems, GRaViTY allows to automatically reverse-engineer variability-aware UML models and semi-automatically map existing design models to the implementation. Besides evaluations of the individual contributions, we demonstrate applicability of the approach in two real-world case studies, the iTrust electronics health records system and the Eclipse Secure Storage. This book chapter provides a summary of the thesis, focusing on the addressed problems, identified and answered research questions, the general solution, and its application of it to two case studies. For details on the individual solutions, please refer to the thesis and the corresponding publications referenced in this book chapter.},

note = {open access},

keywords = {},

pubstate = {published},

tppubtype = {inbook}

}

To ensure the security of a software system, it is vital to keep up with changing security precautions, attacks, and mitigations. Although model-based development enables addressing security already at design-time, design models are often inconsistent with the implementation or among themselves. Such inconsistencies hinder the effective realization and verification of secure software systems. In addition, variants of software systems are another burden to developing secure systems. Vulnerabilities must be identified and fixed on all variants or else attackers could be well-guided in attacking unfixed variants. To ensure security in this context, in the thesis (Peldszus, Security Compliance in Model-driven Development of Software Systems in Presence of Long-Term Evolution and Variants. Springer, Berlin; 2022), we present GRaViTY, an approach that allows security experts to specify security requirements on the most suitable system representation. To preserve security, based on continuous automated change propagation, GRaViTY automatically checks all system representations against these security requirements. To systematically improve the object-oriented design of a software-intensive system, GRaViTY provides security-preserving refactorings. For both continuous security compliance checks and refactorings, we show the application to variant-rich software systems. To support legacy systems, GRaViTY allows to automatically reverse-engineer variability-aware UML models and semi-automatically map existing design models to the implementation. Besides evaluations of the individual contributions, we demonstrate applicability of the approach in two real-world case studies, the iTrust electronics health records system and the Eclipse Secure Storage. This book chapter provides a summary of the thesis, focusing on the addressed problems, identified and answered research questions, the general solution, and its application of it to two case studies. For details on the individual solutions, please refer to the thesis and the corresponding publications referenced in this book chapter.

2023

Peldszus, Sven; Akopian, Noubar; Berger, Thorsten

RobotBT: Behavior-Tree-Based Test-Case Specification for the Robot Framework Proceedings Article

In: Proceedings of the ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA), pp. 1503–1506, 2023, (Open Access).

Abstract | Links | BibTeX

Tuma, Katja; Peldszus, Sven; Strüber, Daniel; Scandariato, Riccardo; Jürjens, Jan

Checking Security Compliance between Models and Code Journal Article

In: Software and Systems Modeling (SoSyM), vol. 22, iss. 1, pp. 273–296, 2023, (Open Access).

Abstract | Links | BibTeX

2022

Barros, Djonathan; Peldszus, Sven; Assunção, Wesley K. G.; Berger, Thorsten

Editing Support for Software Languages: Implementation Practices in Language Server Protocols Proceedings Article

In: MODELS, 2022.

Links | BibTeX

Peldszus, Sven

Security Compliance in Model-driven Development of Software Systems in Presence of Long-Term Evolution and Variants PhD Thesis

2022.

Links | BibTeX

2021

Peldszus, Sven; Bürger, Jens; Kehrer, Timo; Jürjens, Jan

Ontology-Driven Evolution of Software Security Journal Article

In: Data & Knowledge Engineering (DKE), vol. 134, 2021.

Links | BibTeX

2020

Ruland, Sebastian; Kulcsár, Géza; Leblebici, Erhan; Peldszus, Sven; Lochau, Malte

On Controlling the Attack Surface of Object-Oriented Refactorings Proceedings Article

In: Proceedings of the Conference on Software Engineering (SE), pp. 89–90, Gesellschaft für Informatik e.V., 2020, (Open Access).

Links | BibTeX

Peldszus, Sven; Tuma, Katja; Strüber, Daniel; Jürjens, Jan; Scandariato, Riccardo

Secure Data-Flow Compliance Checks between Models and Code based on Automated Mappings (Summary) Proceedings Article

In: Proceedings of the Conference on Software Engineering (SE), pp. 51–52, Gesellschaft für Informatik e.V., 2020, (Open Access).

Links | BibTeX

Peldszus, Sven

Model-driven Development of Evolving Secure Software Systems Proceedings Article

In: Proceedings of the 7th Collaborative Workshop on Evolution and Maintenance of Long-Living Software Systems, 2020.

BibTeX

Lohr, Matthias; Peldszus, Sven

Maintenance of Long Living Smart Contracts Proceedings Article

In: Proceedings of the 7th Collaborative Workshop on Evolution and Maintenance of Long-Living Software Systems, 2020.

BibTeX

Peldszus, Sven; Ahmadian, Amir Shayan; Salnitri, Mattia; Jürjens, Jan; Pavlidis, Michalis; Mouratidis, Haralambos

Visual Privacy Management Book Chapter

In: Salnitri, Mattia; Jürjens, Jan; Mouratidis, Haralambos; Mancini, Loredana; Giorgini, Paolo (Ed.): Chapter Visual Privacy Management, pp. 77-108, Springer, 2020.

Links | BibTeX

2019

Peldszus, Sven; Tuma, Katja; Strüber, Daniel; Jürjens, Jan; Scandariato, Riccardo

Secure Data-Flow Compliance Checks between Models and Code based on Automated Mappings Proceedings Article

In: Proceedings of the 22nd ACM/IEEE International Conference on Model Driven Engineering Languages and Systems (MODELS), 2019.

BibTeX

2018

Strüber, Daniel; Peldszus, Sven; Jürjens, Jan

Taming Multi-Variability of Software Product Line Transformations Proceedings Article

In: Proceedings of the 21st International Conference on Fundamental Approaches in Software Engineering (FASE), pp. 337–355, 2018, (Open Access).

Links | BibTeX

Ruland, Sebastian; Kulcsár, Géza; Leblebici, Erhan; Peldszus, Sven; Lochau, Malte

Controlling the Attack Surface of Object-Oriented Refactorings Proceedings Article

In: Proceedings of the 21st International Conference on Fundamental Approaches in Software Engineering (FASE), pp. 38–55, 2018, (Open Access).

Links | BibTeX

Peldszus, Sven; Strüber, Daniel; Jürjens, Jan

Model-Based Security Analysis of Feature-Oriented Software Product Lines Proceedings Article

In: Proceedings of the 17th ACM SIGPLAN International Conference on Generative Programming: Concepts and Experiences (GPCE), 2018.

Links | BibTeX

Peldszus, Sven; Kulcsár, Géza; Lochau, Malte; Schulze, Sandro

On Continuous Detection of Design Flaws in Evolving Object-Oriented Programs using Incremental Multi-pattern Matching Proceedings Article

In: Proceedings of the Conference on Software Engineering (SE), Gesellschaft für Informatik, 2018, (Open Access).

BibTeX

2017

Peldszus, Sven; Cirullies, Jan; Jürjens, Jan

Sicherheitszertifizierung für die Digitale Transformation -- Anwendung auf den Industrial Data Space Proceedings Article

In: Proceedings of the 25th Software-QS-Tag, 2017, (Best Paper Award).

BibTeX

Ahmadian, Amir Shayan; Peldszus, Sven; Ramadan, Qusai; Jürjens, Jan

Model-based Privacy and Security Analysis with CARiSMA Proceedings Article

In: Proceedings of 2017 11th Joint Meeting of the European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering (FSE), pp. 989–993, 2017.

Links | BibTeX

Peldszus, Sven; Bürger, Jens; Strüber, Daniel

Detecting and Preventing Power Outages in a Smart Grid using eMoflon Proceedings Article

In: Garcia-Dominguez, Antonio; Hinkel, Georg; Křikava, Filip (Ed.): Proceedings of the 10th Transformation Tool Contest (TTC), pp. 19–23, 2017, (Open Access).

BibTeX

Peldszus, Sven; Jürjens, Jan

Werkzeuggestützte Sicherheitszertifizierung -- Anwendung auf den Industrial Data Space Proceedings Article

In: Conference Journal 2017 -- Interesting Insights into Professional Practice -- Papers of Lecturers at the Software Quality Days, pp. 10–14, Software Quality Lab GmbH, 2017.

Links | BibTeX

2016

Peldszus, Sven; Kulcsár, Géza; Lochau, Malte; Schulze, Sandro

Continuous Detection of Design Flaws in Evolving Object-Oriented Programs using Incremental Multi-pattern Matching Proceedings Article

In: Proceedings of the 31st International Conference on Automated Software Engineering (ASE), 2016.

Links | BibTeX

2015

Peldszus, Sven; Kulcsár, Géza; Lochau, Malte

A Solution to the Java Refactoring Case Study using eMoflon Proceedings Article

In: Horn, Tassilo; Krikava, Filip; Rose, Louis (Ed.): Proceedings of the 8th Transformation Tool Contest (TTC), pp. 118–122, 2015, (Open Access).

Links | BibTeX

Kulcsár, Géza; Peldszus, Sven; Lochau, Malte

Object-oriented Refactoring of Java Programs using Graph Transformation Proceedings Article

In: Horn, Tassilo; Krikava, Filip; Rose, Louis (Ed.): Proceedings of the 8th Transformation Tool Contest (TTC), pp. 53–82, 2015, (Open Access).

Links | BibTeX

Peldszus, Sven; Kulcsár, Géza; Lochau, Malte; Schulze, Sandro

Incremental Co-Evolution of Java Programs based on Bidirectional Graph Transformation Proceedings Article

In: Proceedings of the Principles and Practices of Programming on The Java Platform (PPPJ), pp. 138–151, ACM, 2015.

Links | BibTeX

2014

Lochau, Malte; Peldszus, Sven; Kowal, Matthias; Schaefer, Ina

Model-Based Testing Proceedings Article

In: Formal Methods for Executable Software Models - 14th International School on Formal Methods for the Design of Computer, Communication, and Software Systems (SFM), pp. 310–342, Springer, 2014.

Links | BibTeX