To main content

Old News



2022-12-14: 
The paper "Cybersecurity Awareness and Capacities of SMEs" authored by Gencer Erdogan, Ragnhild Halvorsrud, Costas Boletsis, Simeon Tverdal, and John Brian Pickering is accepted at the 9th International Conference on Information Systems Security and Privacy (ICISSP 2023).

2022-12-14: The paper "Privacy-aware IoT: State-of-the-art and challenges" authored by Shukun Tokas, Gencer Erdogan, and Ketil Stølen is accepted at the 9th International Conference on Information Systems Security and Privacy (ICISSP 2023).

2022-12-14: The paper "A Systematic Review of Secure IoT Data Sharing" authored by Thanh Thao Thi Tran, Phu Nguyen, and Gencer Erdogan is accepted at the 9th International Conference on Information Systems Security and Privacy (ICISSP 2023).

2022-11-15: The next seminar is held in collaboration with the GEMINI-centre for IoT on Friday, December 9, 10:00-14:00. The topic of the seminar is explainable machine learning in practice.

2022-09-26: The next public seminar will be held on Thursday October 13, 10:00-14:00. The title of the seminar is Soon you will be on Metavers: Do you know what that means?

2022-09-26: The paper "ETAP: Energy-aware Timing Analysis of Intermittent Programs" authored by Arda Goknil and researchers from University of Trento and Yale University has been accepted at ACM Transactions on Embedded Computing Systems (ACM TECS) Journal.

2022-09-26: The paper "Toward Sustainable IoT Applications: Unique Challenges for Programming the Batteryless Edge" authored by Arda Goknil and K. Sinan Yildirim has been published at IEEE Software.

2022-09-26: The paper "Taming Data Quality in AI-Enabled Industrial Internet of Things" authored by Sagar Sen, Erik Johannes Husom, Arda Goknil, Simeon Tverdal, Phu Nguyen, and Iker Mancisidor has been accepted at IEEE Software.

2022-05-23: The paper "Context-driven Policies Enforcement for Edge-based IoT Data Sharing-as-a-Service" authored by Huu-Ha Nguyen, Phu H. Phung, Phu H. Nguyen and Hong-Linh Truong has been accepted at the IEEE International Conference on Services Computing (IEEE SCC 2022).

2022-05-19: Gencer Erdogan and Simeon Tverdal gave the tutorial "Information Security & Risk Management: Trustworthiness and Human Interaction" at the 16th International Conference on Research Challenges in Information Science.

2022-03-23: Our brand new CORAS tool freely available at https://coras.tools. CORAS is a method for security risk assessment developed by our group and its collaboration partners in a number of research projects. CORAS supports graphical asset-driven threat and risk modelling. The tool is compliant with the CORAS book. It is available as open source under the MIT licence.

2022-03-08: The paper "Deep learning to predict power output from respiratory inductive plethysmography data" authored by Erik Johannes Husom, Pierre Bernabé, and Sagar Sen has been accepted for publication in the journal Applied AI Letters.

2022-03-07: The paper "Industry–Academia Research Collaboration and Knowledge Co-creation: Patterns and Anti-patterns" authored by Dusica Marijan and Sagar Sen has been published in ACM Transactions on Software Engineering and Methodology.

2022-03-06: The paper "UDAVA: An Unsupervised Learning Pipeline for Sensor Data Validation in Manufacturing" authored by Erik Johannes Husom, Simeon Tverdal, Arda Göknil, and Sagar Sen has been accepted at the 1st International Conference on AI Engineering - Software Engineering for AI (CAIN 2022).

2022-01-22: The next public seminar will be held on February 17, 10:00-14:00. The topic of the seminar is Artificial Intelligence and Privacy - from five different perspectives.

2021-12-27: The paper "A Decade of Research on Patterns and Architectures for IoT Security" authored by Tanusan Rajmohan, Phu Nguyen, and Nicolas Ferry has been accepted for publication at the Cybersecurity journal, Springer Nature.

2021-11-16: The paper "Industry-academia research collaboration and knowledge co-creation: Patterns and anti-patterns" authored by Dusica Marijan and Sagar Sen has been accepted to the ACM Transactions on Software Engineering and Methodology (TOSEM).

2021-11-16: The paper "On The Reliability Of Machine Learning Applications In Manufacturing Environments" authored by Nicolas Jourdan, Sagar Sen, Erik Johannes Husom, Enrique Garcia-Ceja, Tobias Biegel, and Joachim Metternich has been accepted at the DistShift Workshop in NeurIPS 2021.

2021-10-08: Shukun Tokas gave a guest lecture "Privacy Principles for Technology" for the course Unassailable IT-systems (IN5130) at UiO.

2021-10-08: Sagar Sen gave a guest lecture "Anonymization and Re‐identification Risk Analysis at the Cancer Registry of Norway" for the course Unassailable IT-systems (IN5130) at UiO.

2021-09-29: Phu Nguyen gave an invited talk entitled "Using Microservices: Customization on Cloud, Shoutout to Tech Debts, and DevOps Enactment for IoT" at the DNB architect summit with more than 150 participants, most are software practitioners at DNB.

2021-09-09: The ENACT project led by our group features as a success story by the European Commission for shaping Europe's digital future! The research and investigation effort behind ENACT enablers has resulted in 45 papers in academic venues, including 6 in high-quality journals and another 6 in A-ranking conferences. Two of the A-ranking conferment papers also won the best paper awards. In addition, a book on DevOps for Trustworthy Smart IoT Systems was published in July 2021, elaborating the methodology and techniques used by the project.

2021-09-08: On September 2, Ketil Stølen conducted a public webinar entitled "The Green Internet of Things: What exactly is it?" with speakers from Norwegian University of Science and Technology, University of Oslo, and SINTEF. Stay tuned for news on the next seminar!

2021-09-03: The paper "Towards a Sustainable IoT with Last‐Mile Software Deployment" authored by Rustem Dautov, Hui Song, and Nicolas Ferry has been accepted at the 11th Workshop on Management of Cloud and Smart City Systems (MoCS 2021).

2021-06-25: Enrique Garcia-Ceja has completed a book titled "Behavior Analysis with Machine Learning and R: A Sensors and Data Driven Approach". Free version available here, e-book version available at Leanpub

2021-06-25: The paper "Frameworks for data‐driven quality management in cyber‐physical systems for manufacturing: A systematic review" authored by Phu Nguyen, Enrique Garcia-Ceja, and Sagar Sen has been accepted at the 15th CIRP Conference on Intelligent Computation in Manufacturing Engineering.

2021-06-25: The paper "Migrating Monoliths to Microservices-based Customizable Multi-tenant Cloud-native Apps" authored by Sindre Grønstøl Haugeland, Phu Nguyen, Hui Song and Franck Chauvel has been accepted at the Technical Track Cloud Native And Dev Ops @ 47th EUROMICRO Conference on Software Engineering and Advanced Applications

2021-06-25: Sagar Sen has given a talk "Breaching the skills barrier in sports with AI" at an event organized by IGLOO Innovation.

2021-06-25: Gencer Erdogan has been interviewed and contributed to the news "Dette må du må vite om cybersikkerhet" aurhored by Birthe Midtun, Per Håkon Meland, Maria Bartnes, Martin Gilje Jaatun, Ravishankar Borgaonkar, Gencer Erdogan, Halvor Molland.

2021-05-11: The book "DevOps for Trustworthy Smart IoT Systems" edited by Nicolas Ferry, Hui Song, Andreas Metzger, and Erkuden Rios is finalized and will be published on July 31, 2021. From SINTEF, Phu Nguyen, Rustem Dautov, Franck Chauvel, Arda Goknil and Bjørn Skjellaug have contributed to the book. The book reports on the ENACT project work to empower the development and operation as well as the continuous and agile evolution of Smart IoT Systems.

2021-05-05: The paper "A Systematic Mapping Study on Cyber Security Indicator Data" authored by Per Håkon Meland, Shukun Tokas, Gencer Erdogan, Karin Bernsmed, and Aida Omerovic has been accepted and published in Electronics, Special Issue New Challenges on Cyber Threat Intelligence.

2021-04-16: The paper "A Systematic Mapping Study on Approaches for AI-Supported Security Risk Assessment" authored by Gencer Erdogan, Enrique Garcia-Ceja, Åsmund Hugo, Phu Nguyen, Sagar Sen has been accepted for publication in the proceedings of COMPSAC 2021: Intelligent and Resilient Computing for a Collaborative World, 45th Anniversary Conference. COMPSAC is the IEEE Computer Society Signature Conference on Computers, Software and Applications.

2021-02-24: Congratulations to our colleague Shukun Tokas who successfully defended her PhD thesis entitled Analysis and Enforcement of GDPR-related Privacy Principles in Object-Oriented Distributed Systems

2021-02-09: One month after a successful round with accepted projects, our group is excited to announce that we have once again, together with an excellent consortium, received funding from the European Commission under the H2020 programme for a new project named ERATOSTHENES. The project proposal received 15 out of 15 points. The project aims at building a novel decentralized mechanism for the identity and trust management of IoT systems. The 42-month project will start in October 2021. SINTEF and Tellu are the two Norwegian partners and will work together on trustworthy software deployment in IoT and the upgrade of secure management for eHealth.

2021-01-11: We are excited to announce that the Secure IoT Software group is involved in three new projects: BlueHealthPass (Innovation Norway project)DAT4.Zero (EU project)InterQ (EU project).

2020-11-17: Our new group pages are up and running.

2020-03-16: The paper "Stream Processing at the Edge" authored by Rustem Dautov and Salvatore Distefano has been accepted for publication in IEEE Transactions on Cloud Computing.

2020-03-16: The 5th of March, ENACT is organizing its first Hackathon at University Côte d'Azur in Sophia Antipolis.

2020-03-16: The paper "A Systematic Mapping of Patterns and Architectures for IoT Security" authored by Tanusan Rajmohan, Phu H. Nguyen and Nicolas Ferry has been accepted for publication in the proceedings of the 5th International conference on Internet of Things, Big data, and Security (IoTBDS 2020).

2020-02-20: The paper "Using Microservices to Customize Multi-Tenant SaaS: From Intrusive to Non-Intrusive" authored by Hui Song, Phu H. Nguyen and Franck Chauvel has been officially published as part of the volume OASIcs, Vol. 78, Microservices 2017/2019.

2020-02-20: The paper "Development and Operation of Trustworthy Smart IoT Systems: The ENACT Framework" authored by Nicolas Ferry, Jacek Dominiak, Anne Gallon, Elena Gonzales, Eider Iturbe, Stéphane Lavirotte, Saturnino Martinez, Andreas Metzger, Victor Muntés-Mulero, Phu H. Nguyen, Alexander Palm, Angel Rego, Erkuden Rios, Diego Riviera, Arnor Solberg, Hui Song, Jean-Yves Tigli and Thierry Winter has been accepted for publication in the proceedings of DevOps'19.

2020-02-20: The paper "A Chaos Engineering System for Live Analysis and Falsification of Exception-handling in the JVM" authored by Long Zhang, Brice Morin, Philipp Haller, Benoit Baudry and Martin Monperrus has been accepted for publication in IEEE Transactions on Software Engineering.

2020-01-08: The paper "Tool Support for Risk-Driven Planning of Trustworthy Smart IoT Systems within DevOps" authored by Andreas Thompson and Gencer Erdogan has been accepted for publication in the proceedings of the 6th International Conference on Information Systems Security and Privacy (ICISSP'20).

2019-12-19: The research project Fleet-Oriented Intelligent Operation of Large Scale Edge System has been accepted for funding by the Research Council of Norway. The Secure IoT Software group is one of the partners in the project which has a total budget of 16M NOK, funded under the Programme for User-driven Research-based Innovation (BIA).

2019-12-19: Ketil Stølen has written a book on Technology Science. The book is published by Universitetsforlaget and you may order the book online.

2019-12-19: During a CINELDI WP1 webinar held on Nov. 27. 2019, Aida Omerovic and Åsmund Hugo presented some of the current results from a case study on security risk analysis of the "Digital Inspection" pilot being conducted within the CINELDI centre. 

2019-12-19: On October 22nd, Gencer Erdogan presented the CYBERWISER.eu Learning Path on the webinar Strengthening European Efforts in Cyber Capacity Building.

2019-10-14: The manuscript "Customizing Multi-Tenant SaaS using Microservices: From Intrusive to Non-Intrusive" has been accepted for inclusion in the Joint Post-proceedings of the First and Second International Conference on Microservices. Congratulations to the authors Hui Song, Phu Nguyen, Franck Chauvel.

2019-09-16: On August 27th, Aida Omerovic presented "Cybersikkerhet og forsyningssikkerhet – erfaringer fra sikkerhetsrisikovurderinger innen to smartnett-piloter" on the Security Festival at Lillehammer. The presentation is based on two case studies carried out in the CINELDI project.

2019-09-16: The book chapter "Making the Internet of Things More Reliable Thanks to Dynamic Access Control" authored by Anne Gallon, Erkuden Rios, Eider Iturbe, Hui Song and Nicolas Ferry has been accepted for publication in "Security and Privacy in Internet of Things: Challenges and Solutions".

2019-09-16: The paper entitled "Towards Model-Based Continuous Deployment of Secure IoT Systems" authored by Nicolas Ferry and Phu Nguyen has been accepted for publication in the proceedings of the DevOps@MODELS workshop, collocated with the MODELS Conference 2019.

2019-09-16: On August 22nd, Phu gave an invited 3-hour lecture to 30 PhD students at the Summer School "Smart Cities for a sustainable energy future-from design to practice", organised at the Technical University of Berlin, Germany.

2019-08-14: The paper "User Recognition Based on Daily Actigraphy Patterns" authored by Enrique Garcia-Ceja and Brice Morin has been accepted for publication in the proceedings of the 13th IFIP International Conference on Trust Management (IFIPTM'19).

2019-08-14: The paper "Model-based, Platform-independent Logging for Heterogeneous Targets" authored by Brice Morin and Nicolas Ferry has been accepted for publication in the proceedings of the 22nd International Conference on Model Driven Engineering Languages and Systems (MODELS'19).

2019-08-14: The paper "Amplifying Integration Tests with CAMP" authored by Franck Chauvel, Brice Morin, and Enrique Garcia-Ceja has been accepted for publication in the proceedings of the 30th International Symposium on Software Reliability Engineering (ISSRE'19).

2019-08-14: The paper "Using Microservices for Non-intrusive Customization of Multi-tenant Software-as-a-Service" authored by Phu H. Nguyen, Hui Song, Franck Chauvel, Roy Muller, Seref Boyar and Erik Levin has been accepted for publication in the proceedings of the 27th ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering (ESEC/FSE).

2019-08-14: The paper "GeneSIS: Continuous Orchestration and Deployment of Smart IoT Systems" authored by Nicolas Ferry, Phu H. Nguyen, Hui Song, Pierre-Emmanuel Novac, Stéphane Lavirotte, Jean-Yves Tigli, Arnor Solberg has been accepted for publication in the proceedings of the IEEE COMPSAC conference.

2019-08-14: The paper "Customizing Multi-Tenant SaaS by Microservices: A Reference Architecture" authored by Hui Song, Phu H. Nguyen, Franck Chauvel, Jens Glattetre, Thomas Schjerpen has been accepted for publication in the proceedings of the 2019 IEEE International Conference on Web Services (ICWS).

2019-08-05: The next public seminar organized by the Secure IoT Software group will be held on Thursday September 26, 10:00-14:00. The topic of the seminar is quantum computers and the Internet of Things. The seminar has speakers from the Norwegian National Security Authority (NSM), University of Oslo, and SINTEF.

2019-03-15: Ketil Stølen will participate the 2019 NSM Security Conference as a panellist to discuss together with three other experts about the topic "Artificial Intelligence. Research and prospects. What place does security have?" The Security Conference is organized every year by the Norwegian National Security Authority (NSM) and will this year take place at Oslo Congress Centre on 20-21 March.

2019-03-06: The paper A Feasibility Study of a Method for Identification and Modelling of Cybersecurity Risks in the Context of Smart Power Grids authored by Aida Omerovic, Hanne Vefsnmo, Gencer Erdogan, Oddbjørn Gjerde, Eivind Gramme, Stig Simonsen has been accepted for publication in the proceedings of the 4th International Conference on Complexity, Future Information Systems and Risk (COMPLEXIS'19).

2019-03-06: The paper A Systematic Mapping Study of Deployment and Orchestration Approaches for IoT authored by Phu H. Nguyen, Nicolas Ferry, Gencer Erdogan, Hui Song, Stéphane Lavirotte, Jean-Yves Tigli, Arnor Solberg has been accepted for publication in the proceedings of the 4th International conference on Internet of Things, Big data, and Security (IoTBDS'19).

2019-03-06: The paper Towards Early Prototyping of Services Based on Open Transport Data - a Feasibility Study authored by Nicolas Ferry, Aida Omerovic, Marit Natvig has been accepted for publication in the proceedings of the 9th International conference on Cloud Computing and Service Science (CLOSER'19).

2019-02-26: CyberSec4Europe, a European Cybersecurity Competence Network project, has its official kick-off meeting on February 28 and March 1. SINTEF is one of 43 consortium partners in the project. CyberSec4Europe is one of four pilot projects to lay the ground work for building a European network of centres of cybersecurity expertise which will help to reinforce research and coordination of cybersecurity in the EU.

2019-01-21: The abstract entitled Towards customizing multi-tenant Cloud applications using non-intrusive microservices authored by Phu H. Nguyen, Hui Song, Franck Chauvel and Erik Levin has been accepted for presentation at Microservices 2019.

2019-01-17: The paper Advances in deployment and orchestration approaches for IoT - A systematic review authored by Phu H. Nguyen, Nicolas Ferry, Gencer Erdogan, Hui Song, Stéphane Lavirotte, Jean-Yves Tigli and Arnor Solberg has been accepted for publication at IEEE ICIOT 2019.

2019-01-17: The paper The preliminary results of a mapping study of deployment and orchestration for IoT authored by Phu H. Nguyen, Nicolas Ferry, Gencer Erdogan, Hui Song, Stéphane Lavirotte, Jean-Yves Tigli and Arnor Solberg has been accepted for publication at the 34th ACM/SIGAPP Symposium On Applied Computing (SAC 2019).

2019-01-17: The paper : a guided tour of the state of the art and research challenges has been accepted in Software & Systems Modeling, co-authored by Sebastian Götz (TU Dresden), Nelly Bencomo (Aston University) and Hui Song (SINTEF).

2019-01-03: The next public seminar organized by the Secure IoT Software group will be held on Thursday January 24, 10:00-14:00. The topic of the seminar is sustainable development and the Internet of Things. The seminar has speakers from Hvaler municipality, University of Oslo, Norwegian University of Science and Technology and SINTEF.

2018-10-31: On October 25, Phu Nguyen presented the Cirrus project and the ENACT project at the public event "Edge computing vs cloud computing" organised by ITS Norway and Tekna Big Data, with 48 participants in the room and 112 participants via live streaming.

2018-10-29: On October 25, Hui Song presented DevOps - a way to reduce risk? at the public seminar The Internet of Things and the development of secure and smart systems.

2018-10-29: On October 25, Ketil Stølen presented IoT, Edge, Fog, Cloud - an attempt to clarify these concepts and their relationships at the public seminar The Internet of Things and the development of secure and smart systems.

2018-10-12: The paper entitled A Security Policy Enforcement Framework for Controlling IoT Tenant Applications in the Edge authored by Phu H. Nguyen, Phu H. Phung, Hong-Linh Truong will be presented on 17 Oct 2018 at the 8th International Conference on the Internet of Things (IoT'18).

2018-09-07: On September 6, Phu Nguyen gave a lecture at the Summer School in Future Energy Information Networks to share experiences with the research students about Smart Grid Security from the IoT and Software Engineering perspectives.

2018-09-05: The paper An Empirical Study on the Comprehensibility of Graphical Security Risk Models Based on Sequence Diagrams authored by Vetle Volden-Freberg and Gencer Erdogan has been accepted for publication in the proceedings of the 13th International Conference on Risks and Security of Internet and Systems (CRiSIS'18).

2018-08-03: The paper Risk-Based Decision Support Model for Offshore Installations authored by Gencer Erdogan, Atle Refsdal, Bjørn Nygård, Ole Petter Rosland, Bernt Kvam Randeberg is published in Business Systems Research Journal.

2018-07-25: The paper Engineering Software Diversity: a Model-Based Approach to Systematically Diversify Communications authored by Brice Morin, Jakob Høgenes, Hui Song, Nicolas Harrand, Benoit Baudry has been accepted for publication in the proceedings of the 21st International Conference on Model Driven Engineering Languages and Systems (MODELS'18).

2018-07-25: The paper Multi-Layered Adaptation for the Failure Prevention and Recovery in Cloud Service Brokerage Platforms authored by Nicolas Ferry, Franck Chauvel, Brice Morin has been accepted for publication in the proceedings of the 11th International Conference on the Quality of Information and Communications Technology (QUATIC'18).

2018-06-15: On June 20, The Gemini Center for IoT is organizing a seminar for PhD students and postdocs working related topics in the area of IoT. Time: 10:00 to 16:00. Location: Auditorium EL1, Gløshaugen, NTNU, Trondheim.

2018-06-13: On June 13, Phu Nguyen will present Advances in genetic engineering and the future of humans at the public seminar The Future "Human".

2018-06-05: The next public seminar organized by the Secure IoT Software group will be held on Wednesday June 13, 10:00-14:00. The topic of the seminar is The Future "Human". The seminar has speakers from The University of Oslo, The University of Agder and SINTEF.

2018-04-29: Jackob Høgenes is in the latest SINTEF news about the technology trends influencing future transport systems.

2018-04-28: On April 11, Anatoly Vasilevskiy presented the demo TECOR: Automate the Testing of One Product on Many Configurations by Anatoly Vasilevskiy, Hui Song, Brice Morin at the 11th IEEE Conference on Software Testing, Validation and Verification.

2018-04-13: Aida Omerovic has been interviewed about security and risk management. The article "Roter du det til her er du ferdig. Punktum." is published by TirsdagMorgen and Norwegian Computer Society.

2018-03-05: The paper ENACT: Development, Operation, and Quality Assurance of Trustworthy Smart IoT Systems authored by Nicolas Ferry, Arnor Solberg, Hui Song, Stéphane Lavirotte, Jean-Yves Tigli, Thierry Winter, Victor Muntés-Mulero, Andreas Metzger, Erkuden Rios Velasco, Amaia Castelruiz Aguirre was presented by Nicolas Ferry at DEVOPS 2018 workshop (DEVOPS'18). Nicolas Ferry was also a member of the panel on DevOps: Issues and Perspectives at the same event.

2018-02-20: The paper Deep Customization of Multi-Tenant SaaS Using Intrusive Microservices authored by Hui Song, Franck Chauvel, Arnor Solberg has been accepted for publication in the proceedings of the 40th International Conference on Software Engineering (ICSE'18).

2018-02-20: The Proceedings of the 4th International Workshop on Graphical Models for Security (GraMSec'17), edited by Peng Lui, Sjouke Mauw, Ketil Stølen will be published in the conference proceedings series Lecture Notes in Computer Science, LNCS 10744, Springer, 2018.

2018-02-20: The paper Problem-based elicitation of security requirements: The ProCOR method authored by Roman Wirtz, Maritta Heisel, Rene Meis, Aida Omerovic, Ketil Stølen has been accepted for publication in the proceedings of the 13th International Conference on Evaluation of Novel Approaches to Software Engineering (ENASE'18).

2018-02-14: On February 14, Aida Omerovic presented Arkitektur som døråpner for Digitalisering og Verdiskapning at SOFTWARE'18.

2018-02-08: The paper Risk-Based Decision Support Model for Offshore Installations authored by Gencer Erdogan, Atle Refsdal, Bjørn Nygård, Bernt Kvam Randeberg, Ole Petter Rosland has been accepted for publication in Business Systems Research (Special issue: Novel Solutions and Novel Approaches in Operational Research).

2018-01-19: The ENACT project, which is coordinated by the Secure IoT Software group, had a successful kick-off meeting from January 16 to January 18. Read more about the project on the ENACT website.

2017-12-11: On December 14, Jakob Høgenes will present Security in IoT - What can we learn from the nature? at the public seminar Internet of Things and Security.

2017-12-11: On December 14, Ketil Stølen will present Security challenges of the future at the public seminar Internet of Things and Security.

2017-12-08: On December 6, Anatoly Vasilevskiy presented Configuration testing for better DevOps at the European Chaos Engineering Days.

2017-11-10: The next public seminar organized by the Cyber Risk group will be held on Thursday December 14, 10:00-14:00. The topic of the seminar is Internet of Things and Security. The seminar has speakers from TellU, Q-Free, Datatilsynet, and SINTEF.

2017-09-27: On September 27, Atle Refsdal presented the paper Experiences from Developing an Algorithm to Support Risk-Based Decisions for Offshore Installations authored by Gencer Erdogan, Atle Refsdal, Bjørn Nygård, Bernt Kvam Randeberg, and Ole Petter Rosland at the 14th International Symposium on Operations Research in Slovenia (SOR 2017).

2017-09-22: On September 21, Gencer Erdogan presented the paper A Method for Developing Qualitative Security Risk Assessment Algorithms authored by Gencer Erdogan and Atle Refsdal at the 12th International Conference on Risks and Security of Internet and Systems (CRiSIS 2017).

2017-08-01: The paper A Method for Developing Qualitative Security Risk Assessment Algorithms authored by Gencer Erdogan and Atle Refsdal has been accepted for publication in the proceedings of the 12th International Conference on Risks and Security of Internet and Systems (CRiSIS 2017).

2017-07-12: The paper Experiences from Developing an Algorithm to Support Risk-Based Decisions for Offshore Installations authored by Gencer Erdogan, Atle Refsdal, Bjørn Nygård, Bernt Kvam Randeberg, and Ole Petter Rosland has been accepted for publication in the proceedings of the 14th International Symposium on Operations Research in Slovenia (SOR 2017).

2017-06-15: The paper A Method for Developing Algorithms for Assessing Cyber-Risk Cost authored by Gencer Erdogan, Alejandra Gonzalez, Atle Refsdal, and Fredrik Seehusen has been accepted for publication in the proceedings of the 2017 IEEE International Conference on Software Quality, Reliability & Security (QRS 2017).

2017-05-29: The chronicle The Internet of Things: A good, but also a threat for the nation written by Ketil Stølen is published in Teknisk Ukeblad, 23 May 2017, no. 5. The chronicle is also available online at digi.no.

2017-04-28: The chronicle Guide to good smart city life written by Marit Kjøsnes Natvig, Aida Omerovic, and Isabelle Tardy is published in Dagens Næringsliv and Gemini.

2017-03-30: The chronicle Trust management - what is it, really? by Ketil Stølen is published in Dagens Perspektiv.

2017-03-27: On April 4, Atle Refsdal will present Experiences from development of risk-based decision support for offshore installations at the public seminar Risk Aggregation - what works in practise?

2017-03-02: The chronicle Privacy and cybersecurity do not go hand in hand by Ketil Stølen is published in Computerworld.

2017-02-15: The next public seminar organized by the Cyber Risk group will be held on April 4, 2017. The topic of the seminar is Risk Aggregation - What works in practise? The seminar has speakers from EVRY, Oslo municipality, The Agency for Public Management and eGovernment (Difi), and SINTEF.

2017-02-08: The paper Privacy Scorecard – Refined Design and Results of a Trial on a Mobility as a Service Example authored by Aida Omerovic, Marit Natvig, and Isabelle Tardy has been accepted for publication in the proceedings of the 27th European Safety and Reliability Association Conference (ESREL 2017).

2017-01-06: A guided tour of the CORAS method is now available.

2017-01-05: On February 16, Ketil Stølen will present The Relationship Between Trust, Security, and Risk at the SOFTWARE 2017 conference.

2017-01-04: On February 14, Aida Omerovic will hold a course about risk management at the Norwegian Computer Society.

2016-11-14: On November 9, text Ketil Stølen presented Privacy from a cyber perspective at the public seminar Cybersecurity and privacy -- Hand in hand or each on their own? organized by SINTEF.

2016-11-14: On November 9, Aida Omerovic presented Transparent real-time monitoring of privacy at the public seminar Cybersecurity and privacy -- Hand in hand or each on their own? organized by SINTEF.

2016-11-14: On November 10, Gencer Erdogan presented CORAL - a model-based approach to risk-driven security testing, at the event Security and Apps organized by NITO.

2016-11-07: The next public seminar organized by the Cyber Risk group will be held on November 9, 2016. The topic of the seminar is Cybersecurity and privacy -- Hand in hand or each on their own? The seminar has speakers from The Norwegian Digital Learning Arena, Norwegian Computing Center, The Norwegian Data Protection Authority, and SINTEF.

2016-11-04: Microsoft Visio 2013 stencil for the CORAS language is now available at the CORAS website. The stencil is also compatible with Microsoft Visio 2016.

2016-11-02: On 18 October 2016 Gencer Erdogan presented the following papers at the 4th International Workshop on Risk Assessment and Risk-driven Quality Assurance (RISK'16) held in conjunction with the 28th International Conference on Testing Software and Systems (ICTSS'16):

  • Gencer Erdogan, Aida Omerovic, Marit Natvig and Isabelle C.R. Tardy: Towards Transparent Real-Time Privacy Risk Assessment of Intelligent Transport Systems.
  • Gencer Erdogan and Ketil Stølen: Design Decisions in the Development of a Graphical Language for Risk-Driven Security Testing.

2016-09-05: On September 1, Fredrik Seehusen presented the paper Differentiating Cyber Risk of Insurance Customers: The Insurance Company Perspective at the International Cross Domain Conference and Workshop (CD-ARES'16). The paper was authored by Inger Anne Tøndel, Erlend Andreas Gjære, Fredrik Seehusen, and Marie Elisabeth Gaup Moe.

2016-07-18: The WISER project has published a technical report (D3.2 - Cyber risk modelling language and guidelines, preliminary version) that describes how to define machine-readable algorithms based on CORAS diagrams to support real-time cyber risk assessment in the WISER platform.

2016-06-30: The WISER project has published a technical report (D3.1 - Cyber risk patterns) that describes common cyber risk patterns expressed in CORAS and how these patterns are used in the WISER platform to support real-time cyber risk assessment.

2016-05-23: The paper A Model-Based Approach to Support Safety-Related Decisions in the Petroleum Domain authored by Leonardo Montecchi, Atle Refsdal, Paolo Lollini, and Andrea Bondavalli, in context of the CONCERTO project, will be presented on July 1 at the 46th Annual IEEE/IFIP International Conference on Dependable Systems and Networks.

2016-04-28: On April 27, the DIAMONDS project received the EUREKA Innovation Award.

2016-04-22: The WISER project has launched its innovative tool Cyber Wiser Light for cyber security assessment. The tool is available free of charge to any organization interested in obtaining a high-level view of their cyber risk exposure.

2016-04-13: ITS Norway and SINTEF is holding a workhop related to privacy in the context of Intelligent Transportation Systems (ITS). The workshop is open to public and will be held on May 4 at Dronning Maudsgt 15, Oslo. Time: 08:30-15:30.

2016-03-11: On February 20, Gencer Erdogan presented the paper Evaluation of the CORAL Approach for Risk-driven Security Testing based on an Industrial Case Study (poster), and the EU-project WISER (poster), at the 2nd International Conference on Information Systems Security and Privacy (ICISSP'16).

2015-10-14: Selected extracts from the book Cyber-Risk Management (Springer 2015) are freely available from Springer, namely the preface, the table of contents, as well as a sample chapter (Chapter 9: Risk Evaluation).

2015-09-17: On September 15, Bjørnar Solhaug gave the tutorial Tool-Supported Cyber-Risk Assessment at the Security Assessment for Systems, Services and Infrastructures (SASSI'15) workshop. PDF of the slides are available.

2015-09-03: New book on risk management and assessment with respect to cybersecurity. A. Refsdal, B. Solhaug and K. Stølen: Cyber-Risk Management (Springer, 2015). The book can be ordered from Springer in printed version or electronically. See also the product flyer.