SecBpmn & DM

Detecting conflicts between security and data-minimization requirements is a challenging task. Since such conflicts arise in the specific context of how the technical and organizational components of the target system interact with each other, their detection requires a thorough understanding of the underlying business processes. For example, a process may require anonymous execution for a task that writes data to a secure data storage, where the identity of the executor is needed for the purpose of accountability.

To address this challenge, we propose an extension of the SecBPMN2 modeling language to enable:

  1. The specification of process-oriented data-minimization and security requirement
  2. The detection of conflicts between these requirements based on a catalog of domain-independent anti-patterns.

Latest available version

Name Version Operating
System
Release
Date
Min. Java
version
Size
STS-Tool SecBpmn & DM - Win 32bit 1.0.0 Windows 32 bit March 08, 2018 Java 7 108 MB
STS-Tool SecBpmn & DM - Win 64bit 1.0.0 Windows 64 bit March 08, 2018 Java 7 108 MB
STS-Tool SecBpmn & DM - Linux 32bit 1.0.0 Linux 32 bit March 08, 2018 Java 7 108 MB
STS-Tool SecBpmn & DM - Linux 64bit 1.0.0 Linux 64 bit March 08, 2018 Java 7 108 MB
STS-Tool SecBpmn & DM - Mac 64bit 1.0.0 MacOs 64 bit March 08, 2018 Java 7 108 MB

 

Additional files