计算机学院学术论坛报告

主题报告：Software Engineering: Secure System and Software Development
报 告 人：Raimundas Matulevi?ius博士 [爱沙尼亚Tartu University大学] 
报告时间：10月 19日（周二） : 15:00～ :16:30
报告地点：上海大学延长校区行健楼707室
邀 请 人：缪淮扣 教授
 
论坛主题：Security is an important artefact of information systems. However the current literature reports, that security concerns appear only when system is already in use, or in the best case security is considered only during the late system development stages (e.g. design and implementation). This is a serious limitation, since the early stage (e.g., requirements engineering) is the place where security trade-offs should be analysed. Early consideration of security allows engineers to envisage threats, their consequences and countermeasures and to discard design alternatives that do not offer a sufficient security level. In this serious of lectures we will learn the major principles of the information system security. We will investigate how security concerns could be determined at the early stages (namely requirements engineering) of system development using different perspectives of system modeling. More specifically the audience will be introduced with the goal modeling techniques, approaches for functional and non-functional requirements that all together help developers to discover, understand, model and implement security concerns, thus, contributing with a security-aware information systems.

报告人简介： Raimundas Matulevi?ius (born 1976, Lithuanian) received his McS diploma from the Vytautas Magnus University (Kaunas, Lithuania) in 2000. In 2005 he received his PhD from the Norwegian University of Science and Technology (Trondheim, Norway) in the area of computer and information science. In 2009 Matulevi?ius has started to work at the Institute of Computer Science, University of Tartu, in Estonia, where he is elected for the Associated Professor position. Matulevi?ius’ research interests include information systems and requirements engineering, goal- and feature-oriented requirements modelling, system and software development processes and methods, model-driven development, empirical studies of software development, enterprise modelling, ontology, system and software security, security risk management, and information visualisation. Currently, the publication record includes more than 45 articles published in the international journals, conferences and workshops.