Blar i Publikasjoner fra CRIStin på forfatter "Jaatun, Martin Gilje"
-
Security Incident Information Exchange for Cloud Service Provisioning Chains
Frøystad, Christian; Tøndel, Inger Anne; Jaatun, Martin Gilje (Journal article; Peer reviewed, 2018)Online services are increasingly becoming a composition of different cloud services, making incident-handling difficult, as Cloud Service Providers (CSPs) with end-user customers need information from other providers about ... -
Security requirements for the rest of us: A survey
Tøndel, Inger Anne; Jaatun, Martin Gilje; Meland, Per Håkon (Journal article; Peer reviewed, 2008) -
Security Threats in Demo Steinkjer. Report from the Telenor-SINTEF collaboration project on Smart Grids
Tøndel, Inger Anne; Jaatun, Martin Gilje; Bartnes, Maria (Research report, 2012)This report describes security threats associated with the deployment of an Advanced Metering Infrastructure (AMI) in the Demo Steinkjer demonstration project. The description is based on the first phase of the actual smart ... -
SMS from OSLO VAV - Secure and Monitored Service from Oslo VAV: First periodic progress report Project objectives, work progress and achievements, project management
Ugarelli, Rita Maria; Selseth, Ingrid; Myhre, Bård; Berge, Svein Peder; Jaatun, Martin Gilje (Research report, 2012) -
Software Security Activities that Support Incident Management in Secure DevOps
Jaatun, Martin Gilje (Chapter, 2018)Many software services are currently created using DevOps, where developers and operations personnel are more tightly integrated. The DevOps paradigm enables shorter development cycles, but increased speed has raised ... -
A Survey on Cybersecurity Barrier Management in Process Control Environments
Øien, Knut; Hauge, Stein; Jaatun, Martin Gilje; Flå, Lars; Bodsberg, Lars (Chapter; Peer reviewed, 2022)The concept of barriers is well known in the safety domain that includes traditional process control environments. However, as critical infrastructures are moving to more interconnected scenarios connected to cloud computing ... -
A Survey on Infrastructure-as-Code Solutions for Cloud Development
Teppan, Håkon; Flå, Lars; Jaatun, Martin Gilje (Chapter, 2022)Cloud software is increasingly written according to the DevOps paradigm, where use of virtualization and Infrastructure-as-Code is prevalent. This paper surveys the state of the art of IaC cloud development, and proposes ... -
Survival by Deception
Jaatun, Martin Gilje; Nyre, Åsmund Ahlmann; Sørensen, Jan Tore (Journal article; Peer reviewed, 2007)A system with a high degree of availability and survivability can be created via service duplication on disparate server platforms, where a compromise via a previously unknown attack is detected by a voting mechanism. ... -
The Building Security in Maturity Model as a Research Tool
Jaatun, Martin Gilje (Chapter, 2017) -
The road to Hell is paved with good intentions: A story of (in)secure software development
Sassoon, Richard; Jaatun, Martin Gilje; Jensen, Jostein (Chapter, 2010) -
Understanding challenges to adoption of the Microsoft Elevation of Privilege game
Tøndel, Inger Anne; Oyetoyan, Tosin Daniel; Jaatun, Martin Gilje; Cruzes, Daniela Soares (Chapter, 2018)The goal of secure software engineering is to create software that keeps performing as intended even when exposed to an active attacker. Threat modelling is considered to be a key activity, but can be challenging to perform ... -
Understanding Challenges to Adoption of the Protection Poker Software Security Game
Tøndel, Inger Anne; Jaatun, Martin Gilje; Cruzes, Daniela Soares; Oyetoyan, Tosin Daniel (Lecture Notes in Computer Science (LNCS);, Chapter; Peer reviewed, 2019)Currently, security requirements are often neglected in agile projects. Despite many approaches to agile security requirements engineering in literature, there is little empirical research available on why there is limited ... -
Water-Tight IoT–Just Add Security
Bour, Guillaume Nicolas; Bosco, Camillo; Ugarelli, Rita Maria; Jaatun, Martin Gilje (Peer reviewed; Journal article, 2023)The security of IoT-based digital solutions is a critical concern in the adoption of Industry 4.0 technologies. These solutions are increasingly being used to support the interoperability of critical infrastructure, such ... -
What Could Possibly Go Wrong? Smart Grid Misuse Case Scenarios
Tøndel, Inger Anne; Borgaonkar, Ravishankar Bhaskarrao; Jaatun, Martin Gilje; Frøystad, Christian (Chapter, 2020)The modernisation of the power grid is ongoing, and the level of digitalisation of the power grid in, say, ten years may be quite different than today. Cyber security needs will change correspondingly. In this paper we ... -
With a Little Help from Your Friends: Collaboration with Vendors During Smart Grid Incident Response Exercises
Langås, Mari; Løfqvist, Sanna; Katt, Basel; Haugan, Thomas Sagvold; Jaatun, Martin Gilje (Chapter; Peer reviewed, 2021)The introduction of Information and Communications Technology (ICT) into conventional power grids has resulted in a digitalized smart grid, enabling a more efficient and robust operation. However, it can also lead to ... -
Zebras and Lions: Better Incident Handling Through Improved Cooperation
Jaatun, Martin Gilje; Bartnes, Maria; Tøndel, Inger Anne (Journal article, 2016)