Security Guarantees and Evolution: From Models to Reality
In recent years, information security has gained increasing attention from the general public and there is a consensus about its paramount importance in society. Examples include recent scandals on users private data, leaks of government secret documents and public threats from anonymous hacker groups to corporate and governmental IT systems worldwide. Achieving security in practical systems is a hard task. As it is the case for other critical system properties (i.e. safety), security should be a concern through all the phases of software development, starting with the very early phases of requirements and design.