D. Mažeika “Model-based systems engineering method for creating secure systems” doctoral dissertation defence

Author, Institution: Donatas Mažeika, Kaunas University of Technology

Science area, field of science: Technological Sciences, Informatics Engineering, T007

Scientific supervisors:
2015 – 2016: Prof. Dr. Lina Nemuraitė (Kaunas University of Technology, Technological Sciences, Informatics Engineering, T007)
2016 – 2020: Prof. Dr. Rimantas Butleris (Kaunas University of Technology, Technological Sciences, Informatics Engineering, T007)

Dissertation Defence Board of Informatics Engineering Science Field:
Prof. Dr. Tomas Blažauskas (Kaunas University of Technology, Technological Sciences, Informatics Engineering, T007) chairman
Prof. Dr. Habil. Gintautas Dzemyda (Vilnius University, Technological Sciences, Informatics Engineering, T007)
Assoc. Prof. Dr. Nikolaj Goranin (Vilnius Gediminas Technical University, Technological Sciences, Informatics Engineering, T007)
Prof. Dr. Raimundas Matulevičius (University of Tartu, Estonia, Technological Sciences, Informatics Engineering, T007)
Prof. Dr. Jevgenijus Toldinas (Kaunas University of Technology, Technological Sciences, Informatics Engineering, T007.

The dissertation defence takes place online.

The doctoral dissertation is available at the library of Kaunas University of Technology (K. Donelaičio g. 20, Kaunas).

Annotation:

The doctoral dissertation is focused on finding an effective way to solve the secure system creation challenge at the early stage of system development by taking advantage of Model-Based Systems Engineering (MBSE). Traditionally, the system is treated as a secure system if the principles of Confidentiality, Integrity and Availability are guaranteed. This thesis introduces a novel MBSE method for creating secure systems. It allows specifying and analysing security aspect together with the system model for complex systems. The suggested MBSE method covers the full spectra of security phases, starting with security requirements, continuing on assets, model threats and risks and finishing with control objectives and controls. The use of model-based techniques ensures that the security and system artefacts are aligned at the early phase of system design, and MBSE benefits are extended to security engineer discipline.