Security and Dependability Engineering

The current state of the art in security-critical ambient systems is far from satisfactory: new security vulnerabilities are discovered on an almost daily basis. To improve this situation, there has recently been a lot of work on techniques and tools supporting the development of trustworthy security-critical software, in particular for dynamic systems in an ambient environment. This paper gives an overview over the field of security and dependability engineering, with an emphasis on ambient system security, and on current advances based on model-based development using UML and providing strong assurance results. The authors give examples for security flaws found in industrial software using such tools and shortly discuss some open research issues.