Program (preliminary)

The workshop is organized as a 1-day-workshop.

9:00 Welcome and Introduction

9:10 KeynoteModel-based Risk Analysis in the Railways Domain,

Markus Schacher

9:40 Session 1: Risk management

  • Risk Management for Outsourcing to the Cloud,
    Johannes Viehmann
  • CRSTIP - An Assessment Scheme for Security Assessment Processes,Arthur-Jozsef Molnar and Jürgen Grossmann

10:30 Coffee break

11:00 Session 2: Risk analysis and assessment

  • Evaluation of Risk for Complex Systems Using Attack Surface,
    Artsiom Yautsiukhin, Leanid Krautsevich and Fabio Martinelli
  • Structuring Compliance Risk Identification Using the CORAS Approach: Compliance as an Asset,
    Samson Yoseph Esayas
  • Towards Safety Risk Assessment of Socio-technical Systems via Failure Logic Analysis,
    Barbara Gallina, Edin Sefer and Atle Refsdal

12:30 Lunch break

14:00 Session 3: Risk Modeling and Risk-Based Testing

  • Expressing Best Practices in (Risk) Analysis and Testing of Safety-Critical Systems Using Patterns,
    Wolfgang Herzner, Sven Sieverding, Thomas Bauer, Brian Nielsen, Omar Kacimi and Eckard Böde
  • Schematic Generation of English-prose Semantics for a Risk Analysis Language Based on UML Interactions,
    Gencer Erdogan, Atle Refsdal and Ketil Stølen
  • How the UML Testing Profile Supports Risk-Based Testing,Marc-Florian Wendland, Andreas Hoffmann, Alessandra Bagnato, Etienne Brosse, Markus Schacher, Tao Yue, Shaukat Ali and Zhen Ru Dai

15:15 Wrap-up and Closing