Bart De Win

A privacy threat analysis framework: supporting the elicitation and fulfillment of privacy requirements

Analyzing Regulatory Rules for Privacy and Security Requirements

Experimental comparison of attack trees and misuse cases for security threat identification

Requirements traceability to support evolution of access control

Empirical and statistical analysis of risk analysis-driven techniques for threat management