As research manager in the DistriNet research group of KU Leuven, I take care of the secure software engineering (security by design) research track. This comprises processes, methodologies, models, design notations and formalisms, and empirical evaluations of those.
Previously, as a postdoctoral researcher, I've worked on empirical evaluations of secure software architecture design techniques. In my PhD thesis, I have empirically investigated the use of (security) patterns for crossing the gap between security requirements and software architecture, and proposed an approach to co-evolve security requirements and software architecture based on patterns. I have also explored techniques for automated transformations between a set of security requirements and a secure architecture.
My research interests include all aspects of secure software engineering, with special attention to security by design aspects, such as
- Architectural design and analysis methods, models, notations and formalisms
- Empirical validation of secure design approaches
- Security patterns
- Security requirements engineering
- Model-driven techniques for security
Besides that, I also strive to follow up on recent developments in the general software engineering space.
- Koen Yskout, Riccardo Scandariato, Wouter Joosen, Do security patterns really help designers?, Software Engineering (ICSE), 2015 IEEE/ACM 37th IEEE International Conference on, pages 292-302, Firenze, Italy, 16-24 May 2015
- Koen Yskout, Riccardo Scandariato, Wouter Joosen, Does organizing security patterns focus architectural choices?, 34th International Conference on Software Engineering (ICSE 2012), volume 1, pages 617-627, Zurich, Switserland, 2-9 June 2012
- Koen Yskout, Riccardo Scandariato, Wouter Joosen, Change patterns: Co-evolving requirements and architecture, Software and Systems Modeling, volume 13, issue 2, pages 625-648, May 2014
- Koen Yskout, (supervisors: Wouter Joosen, Riccardo Scandariato), Connecting Security Requirements and Software Architecture with Patterns (Beveiligingsvereisten en softwarearchitectuur verbinden met patronen), Ph.D. Thesis, 19 April 2013
- Thomas Heyman, Koen Yskout, Riccardo Scandariato, Wouter Joosen, An analysis of the security patterns landscape, Third International Workshop on Software Engineering for Secure Systems (SESS'07: ICSE Workshops 2007), pages 1-7, Minneapolis, Minnesota USA, May 19-20, 2007