Workflows allow to represent the state and the security context in such a way that they can be used directly. WoSec is a project that uses graphical workflow models in order to visualize the execution progress and the security properties of workflows.
You can find the source code of WoSec on Github.
We used the following scenarios for evaluation:
- FaceVZ (fictitious social network)
- Autokauf (car purchase)
- Onlinemarkt (online marketplace)
- Praktikumsvermittlung (internship placement)
We used the following questionnaires in our evaluation:
- Pre-study: Questionnaires A, B, C, D, E
- Main study:
An English translation of the scenarios is available. A translation of the questionnaires is in preparation.
You can find a live demo of WoSec at http://wosec.ipd.uni-karlsruhe.de/wosec/studie/.