University of Twente Student Theses


Designing Secure Enterprise Architectures A comprehensive approach: framework, method, and modelling language

Bosch, S.F. van den (2014) Designing Secure Enterprise Architectures A comprehensive approach: framework, method, and modelling language.

[img] PDF
Abstract:In this thesis, an approach for designing secure enterprise architectures is proposed. Both security and enterprise architecture discipline could potentially benefit from this approach. From a security perspective, the likelihood that security requirements will be addressed throughout the enterprise could be increased. From an enterprise architecture perspective, the intended benefits are expected to be realized by providing a holistic view on the organisation where security is adequately addressed. This is demanded, because the impact of security on the organisation is still growing. The approach to designing secure enterprise architectures as developed in this thesis consists of three elements: a framework, a method, and a modelling language. The framework is described by the relation of the Zachman and SABSA framework. The method is comprised of an integration between the TOGAF ADM and SABSA Lifecycle. The modelling language is completed by an ArchiMate extension including the concepts vulnerability, threat, risk, security mechanism, and security policy. Experts from the enterprise architecture and security discipline were interviewed to validate the proposed approach. Overall, the approach is considered to be both usable and useful. Also, the appropriate constructs are deemed to be included in the modelling language to support security modelling in enterprise architecture.
Item Type:Essay (Master)
Deloitte Consulting, Amstelveen, the Netherlands
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:54 computer science, 85 business administration, organizational science
Programme:Business Information Technology MSc (60025)
Link to this item:
Export this item as:BibTeX
HTML Citation
Reference Manager


Repository Staff Only: item control page