...Information Assurance ...

Research Interests

My main research interest is in the design of secure information systems. More specifically, I am looking at modelling of secure inter-organisational business processes which involve sharing of sensitive information.

I aim to develop a NEW comprehensive security extention to the existing Business Process Modelling Techniques.

The NEW extention:

  1. will allow Business Experts to express security concerns or needs at the stage of Business Process Modelling;
  2. will be clear and easy to understand;
  3. will serve as a bridge between Business and Security Experts;
  4. will assist with agreement of consistent security policies and controls between organisations.
If you have a complex inter-organisational process in mind that may benefit from incorporation of security in it at the early stage, please contact me with details.




My other research interests are:

  • Models of Information Security and Information Assurance disciplines
  • Evolution of Information Security
  • Goals of Information Security and their evolution
  • Origins of the CIA-triad (confidentiality, integrity and availability)
  • Security Architecture
  • Business Process Modelling (BPMN, UML, IDEF)
  • Complex Inter-Organisational Business Processes
  • Incorporation of security into Business Process Modelling
  • Aligning of security goals with business objectives
  • Economics of Information Security
  • Information Security Management and Governance
  • Methodologies for the development of secure information systems
  • Secure information sharing between organisations;
  • Information security and information assurance in collaborative de-perimeterised environment;
  • Information assurance training and awareness



If you have informaiton about any of the topics above, I would really appreciate if you could send me links, papers or your general comments.