{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2024,9,8]],"date-time":"2024-09-08T21:47:09Z","timestamp":1725832029931},"publisher-location":"Cham","reference-count":33,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319257464"},{"type":"electronic","value":"9783319257471"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2015]]},"DOI":"10.1007\/978-3-319-25747-1_25","type":"book-chapter","created":{"date-parts":[[2015,10,12]],"date-time":"2015-10-12T16:12:35Z","timestamp":1444666355000},"page":"248-258","source":"Crossref","is-referenced-by-count":7,"title":["Towards the Derivation of Secure Business Process Designs"],"prefix":"10.1007","author":[{"given":"Nikolaos","family":"Argyropoulos","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Haralambos","family":"Mouratidis","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andrew","family":"Fish","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,12,15]]},"reference":[{"issue":"2","key":"25_CR1","doi-asserted-by":"publisher","first-page":"244","DOI":"10.1016\/j.csi.2006.04.002","volume":"29","author":"D Mellado","year":"2007","unstructured":"Mellado, D., Fern\u00e1ndez-Medina, E., Piattini, M.: A common criteria based security requirements engineering process for the development of secure information systems. Comput. Stan. Interfaces 29(2), 244\u2013253 (2007)","journal-title":"Comput. Stan. Interfaces"},{"key":"25_CR2","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-31069-0_1","volume-title":"Advanced Information Systems Engineering Workshops","author":"O Altuhhova","year":"2012","unstructured":"Altuhhova, O., Matulevi\u010dius, R., Ahmed, N.: Towards definition of secure business processes. In: Bajec, M., Eder, J. (eds.) CAiSE Workshops 2012. LNBIP, vol. 112, pp. 1\u201315. Springer, Heidelberg (2012)"},{"key":"25_CR3","doi-asserted-by":"crossref","unstructured":"Leitner, M., Miller, M., Rinderle-Ma, S.: An Analysis and evaluation of security aspects in the business process model and notation. In: 2013 IEEE International Conference on Availability, Reliability and Security. IEEE Press, pp. 262\u2013267 (2013)","DOI":"10.1109\/ARES.2013.34"},{"key":"25_CR4","doi-asserted-by":"crossref","unstructured":"Neubauer, T., Klemen, M., Biffl, S.: Secure business process management: a roadmap. In: 1st IEEE International Conference on Availability, Reliability and Security, Vienna, Austria. IEEE Press, pp. 457\u2013464 (2006)","DOI":"10.1109\/ARES.2006.121"},{"key":"25_CR5","unstructured":"Pavlovski, C.J., Zou, J.: Non-functional requirements in business process modeling. In: 5th Asia-Pacific Conference on Conceptual Modelling, vol. 79, Wollongong, Australia, pp. 103\u2013112 (2008)"},{"key":"25_CR6","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"29","DOI":"10.1007\/978-3-642-17722-4_3","volume-title":"Information Systems Evolution","author":"K Decreus","year":"2011","unstructured":"Decreus, K., Poels, G.: A goal-oriented requirements engineering method for business processes. In: Soffer, P., Proper, E. (eds.) CAiSE Forum 2010. LNBIP, vol. 72, pp. 29\u201343. Springer, Heidelberg (2011)"},{"issue":"5","key":"25_CR7","doi-asserted-by":"publisher","first-page":"744","DOI":"10.1108\/14637150910987937","volume":"15","author":"RK Ko","year":"2009","unstructured":"Ko, R.K., Lee, S.S., Lee, E.W.: Business process management (BPM) standards: a survey. Bus. Process Manage. 15(5), 744\u2013791 (2009)","journal-title":"Bus. Process Manage."},{"key":"25_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"246","DOI":"10.1007\/978-3-540-75183-0_18","volume-title":"Business Process Management","author":"A Lapouchnian","year":"2007","unstructured":"Lapouchnian, A., Yu, Y., Mylopoulos, J.: Requirements-driven design and configuration management of business processes. In: Alonso, G., Dadam, P., Rosemann, M. (eds.) BPM 2007. LNCS, vol. 4714, pp. 246\u2013261. Springer, Heidelberg (2007)"},{"key":"25_CR9","doi-asserted-by":"crossref","unstructured":"Horkoff, J., Li, T., Li, F.L., Salnitri, M., Cardoso, E., Giorgini, P., Mylopoulos, J., Pimentel, J.A.: Taking goal models downstream: a systematic roadmap. In: 8th International Conference on Research Challenges in Information Science. IEEE Press, pp. 1\u201312 (2014)","DOI":"10.1109\/RCIS.2014.6861036"},{"key":"25_CR10","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1007\/11961239_3","volume-title":"Advances in Knowledge Acquisition and Management","author":"G Koliadis","year":"2006","unstructured":"Koliadis, G., Ghose, A.K.: Relating business process models to goal-oriented requirements models in KAOS. In: Hoffmann, A., Kang, B.-H., Richards, D., Tsumoto, S. (eds.) PKAW 2006. LNCS (LNAI), vol. 4303, pp. 25\u201339. Springer, Heidelberg (2006)"},{"key":"25_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"467","DOI":"10.1007\/978-3-642-25535-9_31","volume-title":"Service-Oriented Computing","author":"AK Ghose","year":"2011","unstructured":"Ghose, A.K., Narendra, N.C., Ponnalagu, K., Panda, A., Gohad, A.: Goal-driven business process derivation. In: Kappel, G., Maamar, Z., Motahari-Nezhad, H.R. (eds.) Service Oriented Computing. LNCS, vol. 7084, pp. 467\u2013476. Springer, Heidelberg (2011)"},{"key":"25_CR12","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1016\/j.entcs.2004.05.005","volume":"105","author":"M Pistore","year":"2004","unstructured":"Pistore, M., Roveri, M., Busetta, P.: Requirements-driven verification of Web services. Electr. Notes Theo. Comput. Sci. 105, 95\u2013108 (2004)","journal-title":"Electr. Notes Theo. Comput. Sci."},{"key":"25_CR13","unstructured":"Guizzardi, R.S., Guizzardi, G., Almeida, J.A.P.A., Cardoso, E.: Bridging the gap between goals, agents and business processes. In: 4th International i* Workshop, CEUR, pp. 46\u201351 (2010)"},{"key":"25_CR14","doi-asserted-by":"publisher","first-page":"4","DOI":"10.1007\/s00766-005-0012-7","volume":"11","author":"SJ Bleistein","year":"2006","unstructured":"Bleistein, S.J., Cox, K., Verner, J., Phalp, K.T.: Requirements engineering for e-business advantage. Require. Eng. 11, 4\u201316 (2006)","journal-title":"Require. Eng."},{"key":"25_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"87","DOI":"10.1007\/978-3-540-75563-0_8","volume-title":"Conceptual Modeling - ER 2007","author":"A Lo","year":"2007","unstructured":"Lo, A., Yu, E.: From business models to service-oriented design: a reference catalog approach. In: Parent, C., Schewe, K.-D., Storey, V.C., Thalheim, B. (eds.) ER 2007. LNCS, vol. 4801, pp. 87\u2013101. Springer, Heidelberg (2007)"},{"key":"25_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"crossref","first-page":"332","DOI":"10.1007\/978-3-319-07881-6_23","volume-title":"Advanced Information Systems Engineering","author":"M Ruiz","year":"2014","unstructured":"Ruiz, M., Costal, D., Espa\u00f1a, S., Franch, X., Pastor, \u00d3.: Integrating the goal and business process perspectives in information system analysis. In: Jarke, M., Mylopoulos, J., Quix, C., Rolland, C., Manolopoulos, Y., Mouratidis, H., Horkoff, J. (eds.) CAiSE 2014. LNCS, vol. 8484, pp. 332\u2013346. Springer, Heidelberg (2014)"},{"key":"25_CR17","doi-asserted-by":"crossref","unstructured":"S\u00e9guran, M., H\u00e9bert, C., Frankova, G.: Secure workflow development from early requirements analysis. In: The 6th European Conference on Web Services. IEEE, pp. 125\u2013134 (2008)","DOI":"10.1109\/ECOWS.2008.13"},{"key":"25_CR18","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"77","DOI":"10.1007\/978-3-642-29231-6_7","volume-title":"Workshops on Business Informatics Research","author":"E Paja","year":"2012","unstructured":"Paja, E., Giorgini, P., Paul, S., Meland, P.H.: Security requirements engineering for secure business processes. In: Niedrite, L., Strazdina, R., Wangler, B. (eds.) BIR Workshops 2011. LNBIP, vol. 106, pp. 77\u201389. Springer, Heidelberg (2012)"},{"key":"25_CR19","unstructured":"Salnitri, M., Giorgini, P.: Transforming socio-technical security requirements in SecBPMN security policies. In: 7th International i* Workshop, Thessaloniki, Greece, CEUR (2014)"},{"key":"25_CR20","doi-asserted-by":"crossref","unstructured":"Decreus, K., Snoeck, M., Poels, G.: Practical challenges for methods transforming i* goal models into business process models. In: IEEE International Conference on Requirements Engineering. IEEE Press, pp. 15\u201323 (2009)","DOI":"10.1109\/RE.2009.25"},{"key":"25_CR21","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"publisher","first-page":"236","DOI":"10.1007\/978-3-642-41641-5_17","volume-title":"The Practice of Enterprise Modeling","author":"M Leitner","year":"2013","unstructured":"Leitner, M., Schefer-Wenzl, S., Rinderle-Ma, S., Strembeck, M.: An experimental study on the design and modeling of security concepts in business processes. In: Grabis, J., Kirikova, M., Zdravkovic, J., Stirna, J. (eds.) PoEM 2013. LNBIP, vol. 165, pp. 236\u2013250. Springer, Heidelberg (2013)"},{"key":"25_CR22","doi-asserted-by":"crossref","unstructured":"Ahmed, N., Matulevicius, R.: A taxonomy for assessing security in business process modelling. In: 7th IEEE International Conference on Research Challenges in Information Science. IEEE Press, pp. 1\u201310 (2013)","DOI":"10.1109\/RCIS.2013.6577700"},{"key":"25_CR23","unstructured":"OMG: Business Process Model and Notation (BPMN) Version 2.0. Technical report, January 2011"},{"issue":"4","key":"25_CR24","doi-asserted-by":"publisher","first-page":"745","DOI":"10.1093\/ietisy\/e90-d.4.745","volume":"E90\u2013D","author":"A Rodr\u00edguez","year":"2007","unstructured":"Rodr\u00edguez, A., Fern\u00e1ndez-Medina, E., Piattini, M.: A BPMN extension for the modeling of security requirements in business processes. IEICE Trans. Inf. Syst. E90\u2013D(4), 745\u2013752 (2007)","journal-title":"IEICE Trans. Inf. Syst."},{"key":"25_CR25","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"crossref","first-page":"200","DOI":"10.1007\/978-3-662-43745-2_14","volume-title":"Enterprise, Business-Process and Information Systems Modeling","author":"M Salnitri","year":"2014","unstructured":"Salnitri, M., Dalpiaz, F., Giorgini, P.: Modeling and verifying security policies in business processes. In: Bider, I., Gaaloul, K., Krogstie, J., Nurcan, S., Proper, H.A., Schmidt, R., Soffer, P. (eds.) BPMDS 2014 and EMMSAD 2014. LNBIP, vol. 175, pp. 200\u2013214. Springer, Heidelberg (2014)"},{"key":"25_CR26","doi-asserted-by":"crossref","unstructured":"Brucker, A.D., Hang, I., L\u00fcckemeyer, G., Ruparel, R.: SecureBPMN: modeling and enforcing access control requirements in business processes. In: The 17th ACM symposium on Access Control Models and Technologies. ACM, pp. 123\u2013126 (2012)","DOI":"10.1145\/2295136.2295160"},{"key":"25_CR27","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"64","DOI":"10.1007\/978-3-540-75183-0_5","volume-title":"Business Process Management","author":"C Wolter","year":"2007","unstructured":"Wolter, C., Schaad, A.: Modeling of task-based authorization constraints in BPMN. In: Alonso, G., Dadam, P., Rosemann, M. (eds.) BPM 2007. LNCS, vol. 4714, pp. 64\u201379. Springer, Heidelberg (2007)"},{"key":"25_CR28","series-title":"Lecture Notes in Business Information Processing","doi-asserted-by":"crossref","first-page":"42","DOI":"10.1007\/978-3-662-45501-2_4","volume-title":"The Practice of Enterprise Modeling","author":"R Braun","year":"2014","unstructured":"Braun, R., Esswein, W.: Classification of domain-specific BPMN extensions. In: Frank, U., Loucopoulos, P., Pastor, \u00d3., Petrounias, I. (eds.) PoEM 2014. LNBIP, vol. 197, pp. 42\u201357. Springer, Heidelberg (2014)"},{"key":"25_CR29","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1155\/2013\/507984","volume":"2013","author":"WM Aalst van der","year":"2013","unstructured":"van der Aalst, W.M.: Business process management : a comprehensive survey. ISRN Softw. Eng. 2013, 1\u201337 (2013)","journal-title":"ISRN Softw. Eng."},{"key":"25_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"501","DOI":"10.1007\/978-3-642-02144-2_39","volume-title":"Advanced Information Systems Engineering","author":"M Indulska","year":"2009","unstructured":"Indulska, M., Recker, J., Rosemann, M., Green, P.: Business process modeling: current issues and future challenges. In: van Eck, P., Gordijn, J., Wieringa, R. (eds.) CAiSE 2009. LNCS, vol. 5565, pp. 501\u2013514. Springer, Heidelberg (2009)"},{"issue":"3","key":"25_CR31","doi-asserted-by":"publisher","first-page":"273","DOI":"10.1016\/j.infsof.2013.12.004","volume":"56","author":"M Leitner","year":"2014","unstructured":"Leitner, M., Rinderle-Ma, S.: A systematic review on security in process-aware information systems - constitution, challenges, and future directions. Inf. Softw. Technol. 56(3), 273\u2013293 (2014)","journal-title":"Inf. Softw. Technol."},{"issue":"2","key":"25_CR32","doi-asserted-by":"publisher","first-page":"285","DOI":"10.1142\/S0218194007003240","volume":"17","author":"H Mouratidis","year":"2007","unstructured":"Mouratidis, H., Giorgini, P.: Secure tropos: a security-oriented extension of the tropos methodology. Int. J. Softw. Eng. Knowl. Eng. 17(2), 285\u2013309 (2007)","journal-title":"Int. J. Softw. Eng. Knowl. Eng."},{"key":"25_CR33","doi-asserted-by":"publisher","first-page":"95","DOI":"10.1007\/978-3-642-29749-6_7","volume-title":"IS Olympics: Information Systems in a Diverse World","author":"M Pavlidis","year":"2012","unstructured":"Pavlidis, M., Islam, S., Mouratidis, H.: A CASE tool to support automated modelling and analysis of security requirements. In: Nurcan, S. (ed.) IS Olympics: Information Systems in a Diverse World, pp. 95\u2013109. Springer, Heidelberg (2012)"}],"container-title":["Lecture Notes in Computer Science","Advances in Conceptual Modeling"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-25747-1_25","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,5,31]],"date-time":"2019-05-31T01:18:04Z","timestamp":1559265484000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-25747-1_25"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2015]]},"ISBN":["9783319257464","9783319257471"],"references-count":33,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-25747-1_25","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2015]]}}}