Yan Li

1

Yan Li

Ph.D. started in: 2011
Expected year of graduation: 2017
COINS consortium member: University of Oslo
Supervised by: Ketil Stølen, Ragnhild Kobro Runde
Links: Cristin
Research area: Security Management
Project title: A lightweight security risk management approach for web applications and an industrial guideline
Project description: The objective of my research is to provide a useful and light-weight security risk analysis method for web application that is practically applicable. I aim to introduce an integrated methodology for risk analysis and security testing which can be carried out continuously as an integrated part of the business process.
To achieve the objective, I have made four artifacts, each of which play an important role within such a method:
1. Combination of testing and security risk analysis;
2. A pattern language approach of security risk analysis for web application;
3. Evaluation of security risk modelling methods;
4. Method application in industry.

Publications:

  1. Mark Mikkelsen, Peter B Barker, Pallab K Bhattacharyya, Maiken Kirkegaard Brix, Pieter F Buur, Kim M Cecil, Kimberly L Chan, David Y-T Chen, Alexander R. Craven, Koenraad Cuypers, Michael Dacko, Niall W Duncan, Ulrike Dydak, David A Edmondson, Gabriele Ende, Lars Ersland, Fei Gao, Ian Greenhouse, Ashley D Harris, Naying He, Stefanie Heba, Nigel Hoggard, Tun-Wei Hsu, Jacobus FA Jansen, Alayar Kangarlu, Thomas Lange, R Marc Lebel, Yan Li, Chien-Yuan E Lin, Jy-Kang Liou, Jiing-Feng Lirng, Feng Liu, Ruoyun Ma, Celine Maes, Marta Moreno-Ortega, Scott O Murray, Sean Noah, Ralph Noeske, Michael D Noseworthy, Georg Oeltzschner, James J Prisciandaro, Nicolaas AJ Puts, Timothy PL Roberts, Markus Sack, Napapon Sailasuta, Muhammad G Saleh, Michael-Paul Schallmo, Nicholas Simard, Stephan P Swinnen, Martin Tegenthoff, Peter Truong, Guangbin Wang, Iain D Wilkinson, Hans-Jorg Wittsack, Hongmin Xu, Fuhua Yan, Chencheng Zhang, Vadim Zipunnikov, Helge J Zollner, Richard AE Edden (2017). Big GABA: Edited MR spectroscopy at 24 research sites
  2. Katsiaryna Labunets, Yan Li, Fabio Massacci, Federica Paci, Martina Ragosta, Bjørnar Solhaug, Ketil Stølen, Alessandra Tedeschi (2015). Preliminary Experiments on the Relative Comprehensibility of Tabular and Graphical Risk Models
  3. Gencer Erdogan, Yan Li, Ragnhild Kobro Runde, Fredrik Seehusen, Ketil Stølen (2014). Approaches for the combined use of risk analysis and testing: A systematic literature review
  4. Gencer Erdogan, Fredrik Seehusen, Yan Li (2013). An Evaluation of a Test-driven Security Risk Analysis Method Based on an Industrial Case Study
  5. Yan Li (2013). Towards a Pattern Language for Security Risk Analysis of Web Applications
  6. Yan Li, Ragnhild Kobro Runde, Ketil Stølen (2013). Towards a pattern language for security risk analysis of web applications
  7. Gencer Erdogan, Yan Li, Ragnhild Kobro Runde, Fredrik Seehusen, Ketil Stølen (2012). Conceptual Framework for the DIAMONDS Project
  8. Yan Li (2012). Conceptual framework for security testing, security risk analysis and their combinations
  9. Mark Thomas Crowley, David Murrell, Nishant Patel, Magnus Breivik, Chang-Yi Lin, Yan Li, Bjørn-Ove Fimland, Luke F. Lester (2011). Analytical Modeling of the Temperature Performance of Monolithic Passively Mode-Locked Quantum Dot Lasers
  10. Yan Li, Magnus Breivik, C.-Y. Feng, Chang-Yi Lin, Nishant Patel, William Zortman, Mark Thomas Crowley, Luke F. Lester (2011). A low repetition rate all-active monolithic passively mode-locked quantum dot laser
  11. Elin Thygesen, Marthe M. Fosse Fensli, Ragnhild Skaar, Hans Inge Sævareid, Yan Li, Rune Werner Fensli (2011). User requirements for a personalized electronic community for elderly people with risk of marginalization
This entry was posted in Students and tagged . Bookmark the permalink.