Refine
Document Type
- Doctoral Thesis (5)
- Master's Thesis (4)
- Bachelor Thesis (2)
- Part of Periodical (2)
- Study Thesis (1)
Language
- English (14) (remove)
Keywords
- model-based (3)
- Abduktion <Logik> (1)
- BPMN (1)
- Bayes-Netz (1)
- Bayesian Networks (1)
- Computersimulation (1)
- Data protection (1)
- Datenschutz (1)
- Diagnose (1)
- Diagnosis (1)
- Dokumentation (1)
- Ergonomic Principles (1)
- Fahrverhalten (1)
- Fault Trees (1)
- Feature Modeling (1)
- Fehlerbaum (1)
- GDPR (1)
- Graph Technology (1)
- Hand-based Gestures (1)
- Image (1)
- Modellfahrzeug (1)
- Mouse Gestures (1)
- Object Recognition (1)
- Petri Nets (1)
- Petri-Netz (1)
- Pfadverfolgung (1)
- Pointing Devices (1)
- Propagation (1)
- ReDSeeDS-Project (1)
- Reverse Engineering (1)
- Rückverfolgbarkeit (1)
- Sattelkraftfahrzeug (1)
- Sattelzug (1)
- Software (1)
- Software Development (1)
- Software Engineering (1)
- Software techniques for object recognition (STOR) (1)
- Softwaretest (1)
- Testen (1)
- Traceability (1)
- UML (1)
- Unsicheres Schließen (1)
- Usability (1)
- WCET (1)
- WEB (1)
- Wahrscheinlichkeit (1)
- conflict detection (1)
- critical section (1)
- data protection (1)
- evolution (1)
- fairness (1)
- functional web testing tools (1)
- futex (1)
- immediate priority ceiling protocol (1)
- long-living systems (1)
- monitor (1)
- mutual exclusion (1)
- predictability (1)
- privacy by design (1)
- privacy impact assessment (1)
- security (1)
- software engineering (1)
- traceability (1)
- transformation (1)
Institute
- Institut für Softwaretechnik (14) (remove)
Code package managers like Cabal track dependencies between packages. But packages rarely use the functionality that their dependencies provide. This leads to unnecessary compilation of unused parts and to speculative conflicts between package versions where there are no conflicts. In two case studies we show how relevant these two problems are. We then describe how we could avoid them by tracking dependencies not between packages but between individual code fragments.
Data-minimization and fairness are fundamental data protection requirements to avoid privacy threats and discrimination. Violations of data protection requirements often result from: First, conflicts between security, data-minimization and fairness requirements. Second, data protection requirements for the organizational and technical aspects of a system that are currently dealt with separately, giving rise to misconceptions and errors. Third, hidden data correlations that might lead to influence biases against protected characteristics of individuals such as ethnicity in decision-making software. For the effective assurance of data protection needs,
it is important to avoid sources of violations right from the design modeling phase. However, a model-based approach that addresses the issues above is missing.
To handle the issues above, this thesis introduces a model-based methodology called MoPrivFair (Model-based Privacy & Fairness). MoPrivFair comprises three sub-frameworks: First, a framework that extends the SecBPMN2 approach to allow detecting conflicts between security, data-minimization and fairness requirements. Second, a framework for enforcing an integrated data-protection management throughout the development process based on a business processes model (i.e., SecBPMN2 model) and a software architecture model (i.e., UMLsec model) annotated with data protection requirements while establishing traceability. Third, the UML extension UMLfair to support individual fairness analysis and reporting discriminatory behaviors. Each of the proposed frameworks is supported by automated tool support.
We validated the applicability and usability of our conflict detection technique based on a health care management case study, and an experimental user study, respectively. Based on an air traffic management case study, we reported on the applicability of our technique for enforcing an integrated data-protection management. We validated the applicability of our individual fairness analysis technique using three case studies featuring a school management system, a delivery management system and a loan management system. The results show a promising outlook on the applicability of our proposed frameworks in real-world settings.
Web application testing is an active research area. Garousi et al. did a systematic mapping study and classified 79 papers published between 2000-2011. However, there seems to be a lack of information exchange between the scientific community and tool developers.
This thesis systematically analyzes the field of functional, system level web application testing tools. 194 candidate tools were collected in the tool search and screened, with 23 tools being selected as foundation of this thesis. These 23 tools were systematically used to generate a feature model of the domain. The methodology to support this is an additional contribution of this thesis. It processes end user documentation of tools belonging to an examined domain and creates a feature model. The feature model gives an overview over the existing features, their alternatives and their distribution. It can be used to identify trends and problems, extraordinary features, help decision making of tool purchase or guide scientists how to focus research.