{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T18:48:09Z","timestamp":1769971689586,"version":"3.49.0"},"publisher-location":"Cham","reference-count":40,"publisher":"Springer Nature Switzerland","isbn-type":[{"value":"9783031707964","type":"print"},{"value":"9783031707971","type":"electronic"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-70797-1_17","type":"book-chapter","created":{"date-parts":[[2024,8,31]],"date-time":"2024-08-31T11:02:22Z","timestamp":1725102142000},"page":"253-269","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Modeling and\u00a0Analyzing Zero Trust Architectures Regarding Performance and\u00a0Security"],"prefix":"10.1007","author":[{"given":"Nicolas","family":"Boltz","sequence":"first","affiliation":[]},{"given":"Larissa","family":"Schmid","sequence":"additional","affiliation":[]},{"given":"Bahareh","family":"Taghavi","sequence":"additional","affiliation":[]},{"given":"Christopher","family":"Gerking","sequence":"additional","affiliation":[]},{"given":"Robert","family":"Heinrich","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2024,9,1]]},"reference":[{"key":"17_CR1","doi-asserted-by":"publisher","first-page":"1309","DOI":"10.1016\/j.egyr.2021.11.272","volume":"8","author":"A Alagappan","year":"2022","unstructured":"Alagappan, A., Venkatachary, S.K., Andrews, L.J.B.: Augmenting zero trust network architecture to enhance security in virtual power plants. Energy Rep. 8, 1309\u20131320 (2022)","journal-title":"Energy Rep."},{"key":"17_CR2","doi-asserted-by":"crossref","unstructured":"Alshareef, H., et al.: Precise analysis of purpose limitation in data flow diagrams. In: ARES (2022)","DOI":"10.1145\/3538969.3539010"},{"key":"17_CR3","unstructured":"Becker, M., Becker, S., Meyer, J.: SimuLizar: design-time modeling and performance analysis of self-adaptive systems (2013)"},{"key":"17_CR4","doi-asserted-by":"crossref","unstructured":"Becker, S., Koziolek, H., Reussner, R.: Model-based performance prediction with the palladio component model. In: WOSP, pp. 54\u201365 (2007)","DOI":"10.1145\/1216993.1217006"},{"key":"17_CR5","doi-asserted-by":"crossref","unstructured":"Bhuiyan, E.A., et al.: Towards next generation virtual power plant: technology review and frameworks. Renew. Sustain. Energy Rev. 150 (2021)","DOI":"10.1016\/j.rser.2021.111358"},{"key":"17_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"342","DOI":"10.1007\/978-3-031-66326-0_21","volume-title":"Software Architecture. ECSA 2023 Tracks, Workshops, and Doctoral Symposium","author":"N Boltz","year":"2024","unstructured":"Boltz, N., et al.: An extensible framework for architecture-based data flow analysis for information security. In: Tekinerdo\u011fan, B., Spalazzese, R., S\u00f6zer, H., Bonfanti, S., Weyns, D. (eds.) ECSA 2023. LNCS, vol. 14590, pp. 342\u2013358. Springer, Cham (2024). https:\/\/doi.org\/10.1007\/978-3-031-66326-0_21"},{"issue":"13","key":"17_CR7","first-page":"10248","volume":"8","author":"B Chen","year":"2020","unstructured":"Chen, B., et al.: A security awareness and protection system for 5G smart healthcare based on zero-trust architecture. IEEE IoT J. 8(13), 10248\u201310263 (2020)","journal-title":"IEEE IoT J."},{"key":"17_CR8","doi-asserted-by":"crossref","unstructured":"Chen, X., et al.: Zero trust architecture for 6G security. IEEE Netw. (2023)","DOI":"10.1109\/MNET.2023.3326356"},{"key":"17_CR9","doi-asserted-by":"publisher","unstructured":"Cholakov, E.: Modelling and analysing zero-trust-architectures regarding performance and security. Master\u2019s thesis (2024). https:\/\/doi.org\/10.5445\/IR\/1000171583","DOI":"10.5445\/IR\/1000171583"},{"key":"17_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-13556-9_1","volume-title":"Architecting Critical Systems","author":"V Cortellessa","year":"2010","unstructured":"Cortellessa, V., Trubiani, C., Mostarda, L., Dulay, N.: An architectural framework for analyzing tradeoffs between software security and performance. In: Giese, H. (ed.) ISARCS 2010. LNCS, vol. 6150, pp. 1\u201318. Springer, Heidelberg (2010). https:\/\/doi.org\/10.1007\/978-3-642-13556-9_1"},{"key":"17_CR11","unstructured":"Cybersecurity and Infrastructure Security Agency (CISA), CISA Zero Trust Maturity Model (2023). https:\/\/www.cisa.gov\/sites\/default\/files\/2023-04\/zero_trust_maturity_model_v2_508.pdf. Accessed 23 Feb 2024"},{"key":"17_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"255","DOI":"10.1007\/978-3-031-66326-0_21","volume-title":"Software Architecture. ECSA 2023 Tracks, Workshops, and Doctoral Symposium","author":"T DeMarco","year":"1979","unstructured":"DeMarco, T.: Structure analysis and system specification. In: Tekinerdo\u011fan, B., Spalazzese, R., S\u00f6zer, H., Bonfanti, S., Weyns, D. (eds.) ECSA 2023. LNCS, vol. 14590, pp. 255\u2013288. Springer, Cham (1979). https:\/\/doi.org\/10.1007\/978-3-031-66326-0_21"},{"key":"17_CR13","doi-asserted-by":"publisher","first-page":"103832","DOI":"10.1016\/j.csi.2024.103832","volume":"89","author":"EB Fernandez","year":"2024","unstructured":"Fernandez, E.B., Brazhuk, A.: A critical analysis of zero trust architecture (ZTA). Comput. Stand. Interfaces 89, 103832 (2024)","journal-title":"Comput. Stand. Interfaces"},{"issue":"3","key":"17_CR14","doi-asserted-by":"publisher","first-page":"224","DOI":"10.1145\/501978.501980","volume":"4","author":"DF Ferraiolo","year":"2001","unstructured":"Ferraiolo, D.F., et al.: Proposed NIST standard for role-based access control. TISSEC 4(3), 224\u2013274 (2001)","journal-title":"TISSEC"},{"key":"17_CR15","unstructured":"Ghate, N., et al.: Advanced zero trust architecture for automating fine-grained access control with generalized attribute relation extraction. IEICE Proc. Ser. 68(C1-5) (2021)"},{"key":"17_CR16","unstructured":"Google Cloud: BeyondCorp (2024). http:\/\/cloud.google.com\/beyondcorp"},{"key":"17_CR17","unstructured":"Gorsler, F., Brosig, F., Kounev, S.: Controlling the Palladio Bench using the Descartes Query Language. In: KPDAYS, pp. 109\u2013118 (2013)"},{"key":"17_CR18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-81915-6","volume-title":"Composing Model-Based Analysis Tools","author":"R Heinrich","year":"2021","unstructured":"Heinrich, R., et al.: Composing Model-Based Analysis Tools. Springer, Heidelberg (2021). https:\/\/doi.org\/10.1007\/978-3-030-81915-6"},{"key":"17_CR19","doi-asserted-by":"crossref","unstructured":"Heinrich, R. et al.: The palladio-bench for modeling and simulating software architectures. In: ICSE-C, pp. 37\u201340 (2018)","DOI":"10.1145\/3183440.3183474"},{"key":"17_CR20","unstructured":"IoT - Market data analysis and forecasts. https:\/\/de.statista.com\/statistik\/studie\/id\/109209\/dokument\/internet-der-dinge-market-outlook-report\/"},{"key":"17_CR21","doi-asserted-by":"crossref","unstructured":"Jung, B.G. et al.: ZTA-based federated policy control paradigm for enterprise wireless network infrastructure. In: APCC, pp. 1\u20135 (2022)","DOI":"10.1109\/APCC55198.2022.9943635"},{"key":"17_CR22","doi-asserted-by":"crossref","unstructured":"Lee, B. et al.: Situational awareness based risk-adapatable access control in enterprise networks. arXiv preprint arXiv:1710.09696 (2017)","DOI":"10.5220\/0006363404000405"},{"key":"17_CR23","unstructured":"Microsoft Corporation, Evolving Zero Trust (2021). https:\/\/query.prod.cms.rt.microsoft.com\/cms\/api\/am\/binary\/RWJJdT. Accessed 23 Feb 2024"},{"key":"17_CR24","unstructured":"National Cyber Security Centre UK, ZTA design principles. https:\/\/www.ncsc.gov.uk\/collection\/zero-trust-architecture. Accessed 23 Feb 2024"},{"key":"17_CR25","unstructured":"Osborn, B. et al.: BeyondCorp: design to deployment at google. USENIX Association: login: Magazine (2016)"},{"issue":"1","key":"17_CR26","doi-asserted-by":"publisher","first-page":"221","DOI":"10.3390\/app13010221","volume":"13","author":"B Paul","year":"2022","unstructured":"Paul, B., Rao, M.: Zero-trust model for smart manufacturing industry. Appl. Sci. 13(1), 221 (2022)","journal-title":"Appl. Sci."},{"key":"17_CR27","doi-asserted-by":"publisher","first-page":"109358","DOI":"10.1016\/j.comnet.2022.109358","volume":"217","author":"K Ramezanpour","year":"2022","unstructured":"Ramezanpour, K., Jagannath, J.: Intelligent ZTA for 5G\/6G networks: principles, challenges, and the role of machine learning in the context of O-RAN. Comput. Netw. 217, 109358 (2022)","journal-title":"Comput. Netw."},{"key":"17_CR28","volume-title":"Modeling and Simulating Software Architectures: The Palladio Approach","author":"RH Reussner","year":"2016","unstructured":"Reussner, R.H., et al.: Modeling and Simulating Software Architectures: The Palladio Approach. MIT Press, Cambridge (2016)"},{"key":"17_CR29","doi-asserted-by":"crossref","unstructured":"Rodigari, S., et al.: Performance analysis of zero-trust multi-cloud. In: 2021 IEEE 14th International Conference on Cloud Computing (CLOUD), pp. 730\u2013732 (2021)","DOI":"10.1109\/CLOUD53861.2021.00097"},{"key":"17_CR30","doi-asserted-by":"publisher","unstructured":"Rose, S., et al.: Zero Trust Architecture. NIST Special Publication (2020). https:\/\/doi.org\/10.6028\/NIST.SP.800-207","DOI":"10.6028\/NIST.SP.800-207"},{"key":"17_CR31","doi-asserted-by":"publisher","DOI":"10.1002\/9781118181034","volume-title":"Case Study Research in Software Engineering: Guidelines and Examples","author":"P Runeson","year":"2012","unstructured":"Runeson, P., et al.: Case Study Research in Software Engineering: Guidelines and Examples. Wiley, Hoboken (2012)"},{"key":"17_CR32","doi-asserted-by":"publisher","first-page":"111138","DOI":"10.1016\/j.jss.2021.111138","volume":"184","author":"S Seifermann","year":"2022","unstructured":"Seifermann, S., et al.: Detecting violations of access control and information flow policies in data flow diagrams. J. Syst. Softw. 184, 111138 (2022)","journal-title":"J. Syst. Softw."},{"key":"17_CR33","doi-asserted-by":"crossref","unstructured":"Sharma, V.S., Trivedi, K.S.: Quantifying software performance, reliability and security: an architecture-based approach. J. Syst. Softw. (2007)","DOI":"10.1016\/j.jss.2006.07.021"},{"key":"17_CR34","doi-asserted-by":"crossref","unstructured":"Sion, L. et al.: Solution-aware data flow diagrams for security threat modeling. In: SAC, pp. 1425\u20131432 (2018)","DOI":"10.1145\/3167132.3167285"},{"key":"17_CR35","unstructured":"Strittmatter, M., Kechaou, A.: The media store 3 case study system. KIT (2016)"},{"key":"17_CR36","doi-asserted-by":"crossref","unstructured":"Teerakanok, S., Uehara, T., Inomata, A.: Migrating to zero trust architecture: reviews and challenges. Secur. Commun. Netw. (2021)","DOI":"10.1155\/2021\/9947347"},{"key":"17_CR37","doi-asserted-by":"crossref","unstructured":"Tuma, K., Scandariato, R., Balliu, M.: Flaws in flows: unveiling design flaws via information flow analysis. In: ICSA, pp. 191\u2013200 (2019)","DOI":"10.1109\/ICSA.2019.00028"},{"key":"17_CR38","unstructured":"Ward, R., Beyer, B.: BeyondCorp: a new approach to enterprise security. USENIX Association: login: Magazine (2014)"},{"key":"17_CR39","unstructured":"WG: SDP and Zero Trust, Integrating SDP and DNS Enhanced Zero Trust Policy Enforcement. CSA (2022). https:\/\/cloudsecurityalliance.org\/artifacts\/integrating-sdp-and-dns-enhanced-zero-trust-policy-enforcement\/"},{"key":"17_CR40","unstructured":"WG: SDP and Zero Trust, SDP Specification v2.0. CSA (2022). https:\/\/cloudsecurityalliance.org\/artifacts\/software-defined-perimeter-zero-trustspecification-v2\/"}],"container-title":["Lecture Notes in Computer Science","Software Architecture"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-70797-1_17","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,8,31]],"date-time":"2024-08-31T11:05:43Z","timestamp":1725102343000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-70797-1_17"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031707964","9783031707971"],"references-count":40,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-70797-1_17","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"1 September 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"We provide a data set () containing all code artifacts, PCM instances of our ZTA modeling templates, and the used case study model instances.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Data Availability"}},{"value":"ECSA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Conference on Software Architecture","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Luxembourg City","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Luxembourg","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"1 September 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"5 September 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"18","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ecsa2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}