--- _id: '5684' author: - first_name: Fabian full_name: Lang, Fabian last_name: Lang - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Andreas full_name: Fink, Andreas last_name: Fink citation: ama: 'Lang F, Schryen G, Fink A. Automated Negotiations Under Uncertain Preferences. In: Proceedings of the 2011 International Conference on Information Systems (ICIS 2011). ; 2011.' apa: Lang, F., Schryen, G., & Fink, A. (2011). Automated Negotiations Under Uncertain Preferences. In Proceedings of the 2011 International Conference on Information Systems (ICIS 2011). bibtex: '@inproceedings{Lang_Schryen_Fink_2011, title={Automated Negotiations Under Uncertain Preferences}, booktitle={Proceedings of the 2011 International Conference on Information Systems (ICIS 2011)}, author={Lang, Fabian and Schryen, Guido and Fink, Andreas}, year={2011} }' chicago: Lang, Fabian, Guido Schryen, and Andreas Fink. “Automated Negotiations Under Uncertain Preferences.” In Proceedings of the 2011 International Conference on Information Systems (ICIS 2011), 2011. ieee: F. Lang, G. Schryen, and A. Fink, “Automated Negotiations Under Uncertain Preferences,” in Proceedings of the 2011 International Conference on Information Systems (ICIS 2011), 2011. mla: Lang, Fabian, et al. “Automated Negotiations Under Uncertain Preferences.” Proceedings of the 2011 International Conference on Information Systems (ICIS 2011), 2011. short: 'F. Lang, G. Schryen, A. Fink, in: Proceedings of the 2011 International Conference on Information Systems (ICIS 2011), 2011.' date_created: 2018-11-14T15:44:41Z date_updated: 2022-01-06T07:02:32Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T14:57:26Z date_updated: 2018-12-13T15:13:46Z file_id: '6173' file_name: ICIS PROCEEDINGS VERSION.pdf file_size: 606840 relation: main_file file_date_updated: 2018-12-13T15:13:46Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: Proceedings of the 2011 International Conference on Information Systems (ICIS 2011) status: public title: Automated Negotiations Under Uncertain Preferences type: conference user_id: '61579' year: '2011' ... --- _id: '5689' author: - first_name: Christian full_name: Bodenstein, Christian last_name: Bodenstein - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Dirk full_name: Neumann, Dirk last_name: Neumann citation: ama: 'Bodenstein C, Schryen G, Neumann D. Reducing Datacenter Energy Usage through Efficient Job Allocation. In: Proceedings of the 19th European Conference on Information Systems (ECIS 2011). ; 2011.' apa: Bodenstein, C., Schryen, G., & Neumann, D. (2011). Reducing Datacenter Energy Usage through Efficient Job Allocation. In Proceedings of the 19th European Conference on Information Systems (ECIS 2011). bibtex: '@inproceedings{Bodenstein_Schryen_Neumann_2011, title={Reducing Datacenter Energy Usage through Efficient Job Allocation}, booktitle={Proceedings of the 19th European Conference on Information Systems (ECIS 2011)}, author={Bodenstein, Christian and Schryen, Guido and Neumann, Dirk}, year={2011} }' chicago: Bodenstein, Christian, Guido Schryen, and Dirk Neumann. “Reducing Datacenter Energy Usage through Efficient Job Allocation.” In Proceedings of the 19th European Conference on Information Systems (ECIS 2011), 2011. ieee: C. Bodenstein, G. Schryen, and D. Neumann, “Reducing Datacenter Energy Usage through Efficient Job Allocation,” in Proceedings of the 19th European Conference on Information Systems (ECIS 2011), 2011. mla: Bodenstein, Christian, et al. “Reducing Datacenter Energy Usage through Efficient Job Allocation.” Proceedings of the 19th European Conference on Information Systems (ECIS 2011), 2011. short: 'C. Bodenstein, G. Schryen, D. Neumann, in: Proceedings of the 19th European Conference on Information Systems (ECIS 2011), 2011.' date_created: 2018-11-14T15:48:00Z date_updated: 2022-01-06T07:02:34Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:04:23Z date_updated: 2018-12-13T15:15:52Z file_id: '6182' file_name: ECIS_2011_-_REDUCING_DATACENTER_ENERGY_USAGE_THROUGH_EFFICIENT_JOB_ALLOCATION.pdf file_size: 210256 relation: main_file file_date_updated: 2018-12-13T15:15:52Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: Proceedings of the 19th European Conference on Information Systems (ECIS 2011) status: public title: Reducing Datacenter Energy Usage through Efficient Job Allocation type: conference user_id: '61579' year: '2011' ... --- _id: '5581' author: - first_name: Felix full_name: Wex, Felix last_name: Wex - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Dirk full_name: Neumann, Dirk last_name: Neumann citation: ama: 'Wex F, Schryen G, Neumann D. Intelligent Decision Support for Centralized Coordination during Emergency Response. In: Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011). ; 2011.' apa: Wex, F., Schryen, G., & Neumann, D. (2011). Intelligent Decision Support for Centralized Coordination during Emergency Response. In Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011). bibtex: '@inproceedings{Wex_Schryen_Neumann_2011, title={Intelligent Decision Support for Centralized Coordination during Emergency Response}, booktitle={Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011)}, author={Wex, Felix and Schryen, Guido and Neumann, Dirk}, year={2011} }' chicago: Wex, Felix, Guido Schryen, and Dirk Neumann. “Intelligent Decision Support for Centralized Coordination during Emergency Response.” In Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011), 2011. ieee: F. Wex, G. Schryen, and D. Neumann, “Intelligent Decision Support for Centralized Coordination during Emergency Response,” in Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011), 2011. mla: Wex, Felix, et al. “Intelligent Decision Support for Centralized Coordination during Emergency Response.” Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011), 2011. short: 'F. Wex, G. Schryen, D. Neumann, in: Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011), 2011.' date_created: 2018-11-14T11:17:44Z date_updated: 2022-01-06T07:02:02Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:03:15Z date_updated: 2018-12-13T15:15:31Z file_id: '6180' file_name: 131.pdf file_size: 286447 relation: main_file file_date_updated: 2018-12-13T15:15:31Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: Proceedings of the 8th International Conference on Information Systems for Crisis Response and Management (ISCRAM 2011) status: public title: Intelligent Decision Support for Centralized Coordination during Emergency Response type: conference user_id: '61579' year: '2011' ... --- _id: '5619' author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Melanie full_name: Volkamer, Melanie last_name: Volkamer - first_name: Sebastian full_name: Ries, Sebastian last_name: Ries citation: ama: 'Schryen G, Volkamer M, Ries S. A formal approach towards measuring trust in distributed systems. In: Proceedings of the 26th Annual ACM Symposium on Applied Computing. ; 2011.' apa: Schryen, G., Volkamer, M., & Ries, S. (2011). A formal approach towards measuring trust in distributed systems. In Proceedings of the 26th Annual ACM Symposium on Applied Computing. bibtex: '@inproceedings{Schryen_Volkamer_Ries_2011, title={A formal approach towards measuring trust in distributed systems}, booktitle={Proceedings of the 26th Annual ACM Symposium on Applied Computing}, author={Schryen, Guido and Volkamer, Melanie and Ries, Sebastian}, year={2011} }' chicago: Schryen, Guido, Melanie Volkamer, and Sebastian Ries. “A Formal Approach towards Measuring Trust in Distributed Systems.” In Proceedings of the 26th Annual ACM Symposium on Applied Computing, 2011. ieee: G. Schryen, M. Volkamer, and S. Ries, “A formal approach towards measuring trust in distributed systems,” in Proceedings of the 26th Annual ACM Symposium on Applied Computing, 2011. mla: Schryen, Guido, et al. “A Formal Approach towards Measuring Trust in Distributed Systems.” Proceedings of the 26th Annual ACM Symposium on Applied Computing, 2011. short: 'G. Schryen, M. Volkamer, S. Ries, in: Proceedings of the 26th Annual ACM Symposium on Applied Computing, 2011.' date_created: 2018-11-14T14:01:37Z date_updated: 2022-01-06T07:02:10Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:06:53Z date_updated: 2018-12-13T15:16:04Z file_id: '6183' file_name: p1739-schryen.pdf file_size: 453557 relation: main_file file_date_updated: 2018-12-13T15:16:04Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: Proceedings of the 26th Annual ACM Symposium on Applied Computing status: public title: A formal approach towards measuring trust in distributed systems type: conference user_id: '61579' year: '2011' ... --- _id: '5640' author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: Schryen G. Is open source security a myth? What do vulnerability and patch data say? Communications of the ACM (CACM). 2011;Vol. 54(No. 5):130-139. apa: Schryen, G. (2011). Is open source security a myth? What do vulnerability and patch data say? Communications of the ACM (CACM), Vol. 54(No. 5), 130–139. bibtex: '@article{Schryen_2011, title={Is open source security a myth? What do vulnerability and patch data say?}, volume={Vol. 54}, number={No. 5}, journal={Communications of the ACM (CACM)}, publisher={Association for Computing Machinery}, author={Schryen, Guido}, year={2011}, pages={130–139} }' chicago: 'Schryen, Guido. “Is Open Source Security a Myth? What Do Vulnerability and Patch Data Say?” Communications of the ACM (CACM) Vol. 54, no. No. 5 (2011): 130–39.' ieee: G. Schryen, “Is open source security a myth? What do vulnerability and patch data say?,” Communications of the ACM (CACM), vol. Vol. 54, no. No. 5, pp. 130–139, 2011. mla: Schryen, Guido. “Is Open Source Security a Myth? What Do Vulnerability and Patch Data Say?” Communications of the ACM (CACM), vol. Vol. 54, no. No. 5, Association for Computing Machinery, 2011, pp. 130–39. short: G. Schryen, Communications of the ACM (CACM) Vol. 54 (2011) 130–139. date_created: 2018-11-14T14:34:54Z date_updated: 2022-01-06T07:02:17Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:03:56Z date_updated: 2018-12-13T15:15:42Z file_id: '6181' file_name: CACM article.pdf file_size: 1020040 relation: main_file file_date_updated: 2018-12-13T15:15:42Z has_accepted_license: '1' issue: No. 5 language: - iso: eng oa: '1' page: 130-139 publication: Communications of the ACM (CACM) publisher: Association for Computing Machinery status: public title: Is open source security a myth? What do vulnerability and patch data say? type: journal_article user_id: '61579' volume: Vol. 54 year: '2011' ... --- _id: '5641' author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. Seeking the VALUE in IS Business Value Research - An Agenda for investigating Synergies Between Socio-organizational Change, IS Capabilities Change, and IS Innovation. In: IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki. ; 2011.' apa: Schryen, G. (2011). Seeking the VALUE in IS Business Value Research - An Agenda for investigating Synergies Between Socio-organizational Change, IS Capabilities Change, and IS Innovation. In IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki. bibtex: '@inproceedings{Schryen_2011, title={Seeking the VALUE in IS Business Value Research - An Agenda for investigating Synergies Between Socio-organizational Change, IS Capabilities Change, and IS Innovation}, booktitle={IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki}, author={Schryen, Guido}, year={2011} }' chicago: Schryen, Guido. “Seeking the VALUE in IS Business Value Research - An Agenda for Investigating Synergies Between Socio-Organizational Change, IS Capabilities Change, and IS Innovation.” In IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki, 2011. ieee: G. Schryen, “Seeking the VALUE in IS Business Value Research - An Agenda for investigating Synergies Between Socio-organizational Change, IS Capabilities Change, and IS Innovation,” in IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki, 2011. mla: Schryen, Guido. “Seeking the VALUE in IS Business Value Research - An Agenda for Investigating Synergies Between Socio-Organizational Change, IS Capabilities Change, and IS Innovation.” IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki, 2011. short: 'G. Schryen, in: IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki, 2011.' date_created: 2018-11-14T14:35:30Z date_updated: 2022-01-06T07:02:18Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:07:46Z date_updated: 2018-12-13T15:16:26Z file_id: '6184' file_name: REVISION - Seeking the value in IS value research.pdf file_size: 291468 relation: main_file file_date_updated: 2018-12-13T15:16:26Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: IS Capabilities Change, and IS Innovation, Proceedings of the 19th European Conference on Information Systems (ECIS 2011), Helsinki status: public title: Seeking the VALUE in IS Business Value Research - An Agenda for investigating Synergies Between Socio-organizational Change, IS Capabilities Change, and IS Innovation type: conference user_id: '61579' year: '2011' ... --- _id: '5685' abstract: - lang: eng text: In double-sided markets for computing resources an optimal allocation schedule among job offers and requests subject to relevant capacity constraints can be determined. With increasing storage demands and emerging storage services the question how to schedule storage jobs becomes more and more interesting. Since such scheduling problems are often in the class NP-complete an exact computation is not feasible in practice. On the other hand an approximation to the optimal solution can easily be found by means of using heuristics. The problem with this attempt is that the suggested solution may not be exactly optimal and is thus less satisfying. Considering the two above mentioned solution approaches one can clearly find a trade-off between the optimality of the solution and the efficiency to get to a solution at all. This work proposes to apply and combine heuristics in optimization to gain from both of their benefits while reducing the problematic aspects. Following this method it is assumed to get closer to the optimal solution in a shorter time compared to a full optimization. author: - first_name: Josef full_name: Finkbeiner, Josef last_name: Finkbeiner - first_name: Christian full_name: Bodenstein, Christian last_name: Bodenstein - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Dirk full_name: Neumann, Dirk last_name: Neumann citation: ama: 'Finkbeiner J, Bodenstein C, Schryen G, Neumann D. Applying heuristic methods for job scheduling in storage markets. In: 18th European Conference on Information Systems (ECIS 2010). ; 2010.' apa: Finkbeiner, J., Bodenstein, C., Schryen, G., & Neumann, D. (2010). Applying heuristic methods for job scheduling in storage markets. In 18th European Conference on Information Systems (ECIS 2010). bibtex: '@inproceedings{Finkbeiner_Bodenstein_Schryen_Neumann_2010, title={Applying heuristic methods for job scheduling in storage markets}, booktitle={18th European Conference on Information Systems (ECIS 2010)}, author={Finkbeiner, Josef and Bodenstein, Christian and Schryen, Guido and Neumann, Dirk}, year={2010} }' chicago: Finkbeiner, Josef, Christian Bodenstein, Guido Schryen, and Dirk Neumann. “Applying Heuristic Methods for Job Scheduling in Storage Markets.” In 18th European Conference on Information Systems (ECIS 2010), 2010. ieee: J. Finkbeiner, C. Bodenstein, G. Schryen, and D. Neumann, “Applying heuristic methods for job scheduling in storage markets,” in 18th European Conference on Information Systems (ECIS 2010), 2010. mla: Finkbeiner, Josef, et al. “Applying Heuristic Methods for Job Scheduling in Storage Markets.” 18th European Conference on Information Systems (ECIS 2010), 2010. short: 'J. Finkbeiner, C. Bodenstein, G. Schryen, D. Neumann, in: 18th European Conference on Information Systems (ECIS 2010), 2010.' date_created: 2018-11-14T15:45:11Z date_updated: 2022-01-06T07:02:32Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:21:06Z date_updated: 2018-12-13T15:19:40Z file_id: '6188' file_name: s1-ln7055316-1881058806-1939656818Hwf-1884822883IdV-5442784107055316PDF_HI0001.pdf file_size: 171336 relation: main_file file_date_updated: 2018-12-13T15:19:40Z has_accepted_license: '1' keyword: - Decision Support System - Algorithms - Optimization - Market Engineering language: - iso: eng oa: '1' publication: 18th European Conference on Information Systems (ECIS 2010) status: public title: Applying heuristic methods for job scheduling in storage markets type: conference user_id: '61579' year: '2010' ... --- _id: '5690' abstract: - lang: eng text: In a world, where more and more businesses seem to trade in an online market, the supply of online services to supply the ever-growing demand could quickly reach its capacity limits. Online service providers may find themselves maxed out at peak operation levels during high-traffic timeslots but too little demand during low-traffic timeslots, although the latter is becoming less frequent. At this point not only deciding which user is allocated what level of service becomes essential, but also the magnitude of the service provided, can be controlled by pricing. Pricing is an important factor when efficient and acceptable allocation of resources between individuals must be reached. Without prices, transferring or sharing goods would be impossible. In sharing information, pricing a product however is not as simple as relatively pricing an apple or a pear. Often the costs, and hence the prices are simply unknown. Backed by this scenario, the online services market could be combined with the market design mechanism of diamonds. For this we propose an ultimatum pricing strategy which effectively allows for valuations to be accounted for, but no longer a necessity when pricing in grid, cloud or other online computing environments. author: - first_name: Christian full_name: Bodenstein, Christian last_name: Bodenstein - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Dirk full_name: Neumann, Dirk last_name: Neumann citation: ama: 'Bodenstein C, Schryen G, Neumann D. From “Take-it-or-leave-it” offers to “Take-it-or-be-left-out” Ultimatum - A trade mechanism for Online Services. In: 18th European Conference on Information Systems (ECIS 2010). ; 2010.' apa: Bodenstein, C., Schryen, G., & Neumann, D. (2010). From “Take-it-or-leave-it” offers to “Take-it-or-be-left-out” Ultimatum - A trade mechanism for Online Services. In 18th European Conference on Information Systems (ECIS 2010). bibtex: '@inproceedings{Bodenstein_Schryen_Neumann_2010, title={From “Take-it-or-leave-it” offers to “Take-it-or-be-left-out” Ultimatum - A trade mechanism for Online Services}, booktitle={18th European Conference on Information Systems (ECIS 2010)}, author={Bodenstein, Christian and Schryen, Guido and Neumann, Dirk}, year={2010} }' chicago: Bodenstein, Christian, Guido Schryen, and Dirk Neumann. “From ‘Take-It-or-Leave-It’ Offers to ‘Take-It-or-Be-Left-out’ Ultimatum - A Trade Mechanism for Online Services.” In 18th European Conference on Information Systems (ECIS 2010), 2010. ieee: C. Bodenstein, G. Schryen, and D. Neumann, “From ‘Take-it-or-leave-it’ offers to ‘Take-it-or-be-left-out’ Ultimatum - A trade mechanism for Online Services,” in 18th European Conference on Information Systems (ECIS 2010), 2010. mla: Bodenstein, Christian, et al. “From ‘Take-It-or-Leave-It’ Offers to ‘Take-It-or-Be-Left-out’ Ultimatum - A Trade Mechanism for Online Services.” 18th European Conference on Information Systems (ECIS 2010), 2010. short: 'C. Bodenstein, G. Schryen, D. Neumann, in: 18th European Conference on Information Systems (ECIS 2010), 2010.' date_created: 2018-11-14T15:48:39Z date_updated: 2022-01-06T07:02:34Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:22:41Z date_updated: 2018-12-13T15:20:13Z file_id: '6191' file_name: Take it or leave it - ECIS - Proof.pdf file_size: 247621 relation: main_file file_date_updated: 2018-12-13T15:20:13Z has_accepted_license: '1' keyword: - Posted Price - Ultimatum Game - Energy Efficiency - Mechanism Design language: - iso: eng oa: '1' publication: 18th European Conference on Information Systems (ECIS 2010) status: public title: From "Take-it-or-leave-it" offers to "Take-it-or-be-left-out" Ultimatum - A trade mechanism for Online Services type: conference user_id: '61579' year: '2010' ... --- _id: '5598' abstract: - lang: eng text: Emerging digital environments and infrastructures, such as distributed services and computing services, have generated new options of communication, information sharing, and resource utilization in past years. Different distributed trust concepts are applied to increase trust in such systems. However, these concepts yield to rather complex architectures which make it difficult to determine which component or system needs to be trusted. This paper presents a novel trust measurement method for distributed systems which enables the t identification of weak points in the overall system architecture. The measurement method includes the specification of a formal trust language and its representation by means of propositional logic formulas. The applicability of the proposed concepts is demonstrated by conducting a case study on the Internet voting system that was used in the 2007 parliamentary elections in Estonia. author: - first_name: Melanie full_name: Volkamer, Melanie last_name: Volkamer - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Volkamer M, Schryen G. Measuring eTrust in distributed systems - General Concept and Application to Internet Voting. In: Proceedings of the 23rd Bled EConference. ; 2010.' apa: Volkamer, M., & Schryen, G. (2010). Measuring eTrust in distributed systems - General Concept and Application to Internet Voting. In Proceedings of the 23rd Bled eConference. bibtex: '@inproceedings{Volkamer_Schryen_2010, title={Measuring eTrust in distributed systems - General Concept and Application to Internet Voting}, booktitle={Proceedings of the 23rd Bled eConference}, author={Volkamer, Melanie and Schryen, Guido}, year={2010} }' chicago: Volkamer, Melanie, and Guido Schryen. “Measuring ETrust in Distributed Systems - General Concept and Application to Internet Voting.” In Proceedings of the 23rd Bled EConference, 2010. ieee: M. Volkamer and G. Schryen, “Measuring eTrust in distributed systems - General Concept and Application to Internet Voting,” in Proceedings of the 23rd Bled eConference, 2010. mla: Volkamer, Melanie, and Guido Schryen. “Measuring ETrust in Distributed Systems - General Concept and Application to Internet Voting.” Proceedings of the 23rd Bled EConference, 2010. short: 'M. Volkamer, G. Schryen, in: Proceedings of the 23rd Bled EConference, 2010.' date_created: 2018-11-14T11:49:50Z date_updated: 2022-01-06T07:02:06Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:14:05Z date_updated: 2018-12-13T15:16:50Z file_id: '6185' file_name: 06_Schryen.pdf file_size: 243413 relation: main_file file_date_updated: 2018-12-13T15:16:50Z has_accepted_license: '1' keyword: - distributed trust concepts - measuring etrust - Internet voting language: - iso: eng oa: '1' publication: Proceedings of the 23rd Bled eConference status: public title: Measuring eTrust in distributed systems - General Concept and Application to Internet Voting type: conference user_id: '61579' year: '2010' ... --- _id: '5631' abstract: - lang: eng text: While many theoretical arguments against or in favor of open source and closed source software development have been presented, the empirical basis for the assessment of arguments and the development of models is still weak. Addressing this research gap, this paper presents the first comprehensive empirical investigation of published vulnerabilities and patches of 17 widely deployed open source and closed source software packages, including operating systems, database systems, web browsers, email clients, and office systems. The empirical analysis uses comprehensive vulnerability data contained in the NIST National Vulnerability Database and a newly compiled data set of vulnerability patches. The results suggest that it is not the particular software development style that determines the severity of vulnerabilities and vendors? patching behavior, but rather the specific application type and the policy of the particular development community, respectively. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Rich full_name: Eliot, Rich last_name: Eliot citation: ama: 'Schryen G, Eliot R. Increasing software security through open source or closed source development? Empirics suggest that we have asked the wrong question. In: 43rd Annual Hawaii International Conference on System Sciences. ; 2010.' apa: Schryen, G., & Eliot, R. (2010). Increasing software security through open source or closed source development? Empirics suggest that we have asked the wrong question. In 43rd Annual Hawaii International Conference on System Sciences. bibtex: '@inproceedings{Schryen_Eliot_2010, title={Increasing software security through open source or closed source development? Empirics suggest that we have asked the wrong question}, booktitle={43rd Annual Hawaii International Conference on System Sciences}, author={Schryen, Guido and Eliot, Rich}, year={2010} }' chicago: Schryen, Guido, and Rich Eliot. “Increasing Software Security through Open Source or Closed Source Development? Empirics Suggest That We Have Asked the Wrong Question.” In 43rd Annual Hawaii International Conference on System Sciences, 2010. ieee: G. Schryen and R. Eliot, “Increasing software security through open source or closed source development? Empirics suggest that we have asked the wrong question,” in 43rd Annual Hawaii International Conference on System Sciences, 2010. mla: Schryen, Guido, and Rich Eliot. “Increasing Software Security through Open Source or Closed Source Development? Empirics Suggest That We Have Asked the Wrong Question.” 43rd Annual Hawaii International Conference on System Sciences, 2010. short: 'G. Schryen, R. Eliot, in: 43rd Annual Hawaii International Conference on System Sciences, 2010.' date_created: 2018-11-14T14:23:45Z date_updated: 2022-01-06T07:02:14Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:23:33Z date_updated: 2018-12-13T15:20:23Z file_id: '6192' file_name: vendors behavior - UPDATED IEEE version.pdf file_size: 299380 relation: main_file file_date_updated: 2018-12-13T15:20:23Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: 43rd Annual Hawaii International Conference on System Sciences status: public title: Increasing software security through open source or closed source development? Empirics suggest that we have asked the wrong question type: conference user_id: '61579' year: '2010' ... --- _id: '5632' abstract: - lang: eng text: 'Enduring doubts about the value of IS investments reveal that IS researchers have not fully managed to identify and to explain the economic benefits of IS. Three research tasks are essential requisites on the path towards addressing this criticism: the synthesis of knowledge, the identification of lack of knowledge, and the proposition of paths for closing knowledge gaps. This paper considers each of these tasks by a) synthesizing key research findings based on a comprehensive literature review, b) identifying and unfolding key limitations of current research, and c) applying a decision-theoretic perspective, which opens new horizons to IS business value research and shows paths for overcoming the limitations. The adoption of this perspective results in a decision-theoretic foundation of IS business value research and includes the proposition of a consistent terminology and a research model that frames further research.' author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Christian full_name: Bodenstein, Christian last_name: Bodenstein citation: ama: 'Schryen G, Bodenstein C. A decision-theoretic foundation of IS business value research. In: Proceedings of the 18th European Conference on Information Systems (ECIS 2010). ; 2010.' apa: Schryen, G., & Bodenstein, C. (2010). A decision-theoretic foundation of IS business value research. In Proceedings of the 18th European Conference on Information Systems (ECIS 2010). bibtex: '@inproceedings{Schryen_Bodenstein_2010, title={A decision-theoretic foundation of IS business value research}, booktitle={Proceedings of the 18th European Conference on Information Systems (ECIS 2010)}, author={Schryen, Guido and Bodenstein, Christian}, year={2010} }' chicago: Schryen, Guido, and Christian Bodenstein. “A Decision-Theoretic Foundation of IS Business Value Research.” In Proceedings of the 18th European Conference on Information Systems (ECIS 2010), 2010. ieee: G. Schryen and C. Bodenstein, “A decision-theoretic foundation of IS business value research,” in Proceedings of the 18th European Conference on Information Systems (ECIS 2010), 2010. mla: Schryen, Guido, and Christian Bodenstein. “A Decision-Theoretic Foundation of IS Business Value Research.” Proceedings of the 18th European Conference on Information Systems (ECIS 2010), 2010. short: 'G. Schryen, C. Bodenstein, in: Proceedings of the 18th European Conference on Information Systems (ECIS 2010), 2010.' date_created: 2018-11-14T14:24:25Z date_updated: 2022-01-06T07:02:14Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:24:22Z date_updated: 2018-12-13T15:20:37Z file_id: '6193' file_name: IS business value - ECIS - Final Version.pdf file_size: 174368 relation: main_file file_date_updated: 2018-12-13T15:20:37Z has_accepted_license: '1' keyword: - Decision theory - IT value - IS assessment - IS evaluation language: - iso: eng oa: '1' publication: Proceedings of the 18th European Conference on Information Systems (ECIS 2010) status: public title: A decision-theoretic foundation of IS business value research type: conference user_id: '61579' year: '2010' ... --- _id: '5642' abstract: - lang: eng text: This paper presents a fuzzy set based decision support model for taking uncertainty into account when making security investment decisions for distributed systems. The proposed model is complementary to robabilistic approaches and useful in situations where probabilistic information is either unavailable or not appropriate to reliably predict future conditions. We ?rst present the speci?cation of a formal security language that allows to specify under which conditions a distributed system is protected against security violations. We show that each term of the security language can be transformed into an equivalent propositional logic term. Then we use propositional logic terms to de?ne a fuzzy set based decision model. This optimization model incorporates uncertainty with regard to the impact of investments on the achieved security levels of components of the distributed system. The model also accounts for budget and security constraints, in order to be applicable in practice. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. A Fuzzy Model for IT Security Investments. In: C. Freiling F, ed. Sicherheit 2010 : Sicherheit, Schutz Und Zuverl{\"a}ssigkeit ; Konferenzband Der 5. Jahrestagung Des Fachbereichs Sicherheit Der Gesellschaft F{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin. Vol 170. GI-Edition: lecture notes in informatics. Proceedings. Bonn: Gesellschaft für Informatik; 2010:289-304.' apa: 'Schryen, G. (2010). A Fuzzy Model for IT Security Investments. In F. C. Freiling (Ed.), Sicherheit 2010 : Sicherheit, Schutz und Zuverl{\"a}ssigkeit ; Konferenzband der 5. Jahrestagung des Fachbereichs Sicherheit der Gesellschaft f{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin (Vol. 170, pp. 289–304). Bonn: Gesellschaft für Informatik.' bibtex: '@inproceedings{Schryen_2010, place={Bonn}, series={GI-Edition: lecture notes in informatics. Proceedings}, title={A Fuzzy Model for IT Security Investments}, volume={170}, booktitle={Sicherheit 2010 : Sicherheit, Schutz und Zuverl{\"a}ssigkeit ; Konferenzband der 5. Jahrestagung des Fachbereichs Sicherheit der Gesellschaft f{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin}, publisher={Gesellschaft für Informatik}, author={Schryen, Guido}, editor={C. Freiling, FelixEditor}, year={2010}, pages={289–304}, collection={GI-Edition: lecture notes in informatics. Proceedings} }' chicago: 'Schryen, Guido. “A Fuzzy Model for IT Security Investments.” In Sicherheit 2010 : Sicherheit, Schutz Und Zuverl{\"a}ssigkeit ; Konferenzband Der 5. Jahrestagung Des Fachbereichs Sicherheit Der Gesellschaft F{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin, edited by Felix C. Freiling, 170:289–304. GI-Edition: Lecture Notes in Informatics. Proceedings. Bonn: Gesellschaft für Informatik, 2010.' ieee: 'G. Schryen, “A Fuzzy Model for IT Security Investments,” in Sicherheit 2010 : Sicherheit, Schutz und Zuverl{\"a}ssigkeit ; Konferenzband der 5. Jahrestagung des Fachbereichs Sicherheit der Gesellschaft f{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin, 2010, vol. 170, pp. 289–304.' mla: 'Schryen, Guido. “A Fuzzy Model for IT Security Investments.” Sicherheit 2010 : Sicherheit, Schutz Und Zuverl{\"a}ssigkeit ; Konferenzband Der 5. Jahrestagung Des Fachbereichs Sicherheit Der Gesellschaft F{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin, edited by Felix C. Freiling, vol. 170, Gesellschaft für Informatik, 2010, pp. 289–304.' short: 'G. Schryen, in: F. C. Freiling (Ed.), Sicherheit 2010 : Sicherheit, Schutz Und Zuverl{\"a}ssigkeit ; Konferenzband Der 5. Jahrestagung Des Fachbereichs Sicherheit Der Gesellschaft F{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin, Gesellschaft für Informatik, Bonn, 2010, pp. 289–304.' date_created: 2018-11-14T14:35:59Z date_updated: 2022-01-06T07:02:18Z ddc: - '000' department: - _id: '277' editor: - first_name: Felix full_name: C. Freiling, Felix last_name: C. Freiling extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:22:12Z date_updated: 2018-12-13T15:20:03Z file_id: '6190' file_name: security_fuzzy_LNI Version.pdf file_size: 372660 relation: main_file file_date_updated: 2018-12-13T15:20:03Z has_accepted_license: '1' intvolume: ' 170' language: - iso: eng oa: '1' page: 289-304 place: Bonn publication: 'Sicherheit 2010 : Sicherheit, Schutz und Zuverl{\"a}ssigkeit ; Konferenzband der 5. Jahrestagung des Fachbereichs Sicherheit der Gesellschaft f{\"u}r Informatik e.V. (GI), 5. - 7. Oktober 2010 in Berlin' publisher: Gesellschaft für Informatik series_title: 'GI-Edition: lecture notes in informatics. Proceedings' status: public title: A Fuzzy Model for IT Security Investments type: conference user_id: '61579' volume: 170 year: '2010' ... --- _id: '5643' abstract: - lang: eng text: Enduring doubts about the value of IS investments reveal that IS researchers have not fully managed to identify and to explain the economic benefits of IS. This paper assumes that literature reviews, which represent a powerful instrument for the identification and synthesis of knowledge, have not tapped their full potential to address this issue due to deficiencies in methodology. The analysis of 18 literature reviews published in pertinent academic outlets during the past 20 years shows such deficiencies. Two of the most critical weaknesses identified are (1) the lack of theory use in most reviews and (2) a weak linkage of reviews, resulting in little progress in theory and framework development. The systematic identification of these weaknesses and the extraction of promising methodological examples from past literature are the main contributions of this work, which supports the composition of more effective literature reviews in future research. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness. In: Proceedings of the First Scandinavian Conference on Information Systems (SCIS). ; 2010.' apa: 'Schryen, G. (2010). An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness. In Proceedings of the First Scandinavian Conference on Information Systems (SCIS).' bibtex: '@inproceedings{Schryen_2010, title={An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness}, booktitle={Proceedings of the First Scandinavian Conference on Information Systems (SCIS)}, author={Schryen, Guido}, year={2010} }' chicago: 'Schryen, Guido. “An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness.” In Proceedings of the First Scandinavian Conference on Information Systems (SCIS), 2010.' ieee: 'G. Schryen, “An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness,” in Proceedings of the First Scandinavian Conference on Information Systems (SCIS), 2010.' mla: 'Schryen, Guido. “An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness.” Proceedings of the First Scandinavian Conference on Information Systems (SCIS), 2010.' short: 'G. Schryen, in: Proceedings of the First Scandinavian Conference on Information Systems (SCIS), 2010.' date_created: 2018-11-14T14:36:26Z date_updated: 2022-01-06T07:02:18Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:14:51Z date_updated: 2018-12-13T15:17:00Z file_id: '6186' file_name: 2010_Book_ScandinavianInformationSystems - Schryen.pdf file_size: 302340 relation: main_file file_date_updated: 2018-12-13T15:17:00Z has_accepted_license: '1' keyword: - Literature review - Business value - Information systems - Methodology - Theory language: - iso: eng oa: '1' publication: Proceedings of the First Scandinavian Conference on Information Systems (SCIS) status: public title: 'An Analysis of Literature Reviews on IS Business Value: How Deficiencies in Methodology and Theory Use Resulted in Limited Effectiveness' type: conference user_id: '61579' year: '2010' ... --- _id: '5644' abstract: - lang: eng text: The economic relevance of information systems has been studied for many years and has attracted an abundance of research papers. However, the ?productivity paradoxon? of the 90s, Carr?s widely recognized paper ?IT doesn?t matter?, and several studies that do not find a positive correlation between IS investments and economic performance reveal long-lasting difficulties for IS researchers to explain ?IS business value?. Business executives and researchers also continue to question the value of IS investments. This raises the question of whether literature reviews have tapped their potential to address the concerns by covering key research areas of IS business value and preserving their key findings. In order to address this question, this paper identifies and describes 12 key research areas, and synthesizes what literature reviews published in pertinent academic outlets have done to preserve knowledge. The analysis of 22 literature reviews shows that some crucial areas have not been (sufficiently) covered. They provide fertile areas for future literature reviews. As this work is based on the results of more than 200 research papers, it is capable of drawing a comprehensive picture of the current state-of-the-art in IS business value research. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. Preserving knowledge on IS business value: what literature reviews have done. Business \& Information Systems Engineering (BISE). 2010;52(4):225-237.' apa: 'Schryen, G. (2010). Preserving knowledge on IS business value: what literature reviews have done. Business \& Information Systems Engineering (BISE), 52(4), 225–237.' bibtex: '@article{Schryen_2010, title={Preserving knowledge on IS business value: what literature reviews have done}, volume={52}, number={4}, journal={Business \& Information Systems Engineering (BISE)}, publisher={Springer}, author={Schryen, Guido}, year={2010}, pages={225–237} }' chicago: 'Schryen, Guido. “Preserving Knowledge on IS Business Value: What Literature Reviews Have Done.” Business \& Information Systems Engineering (BISE) 52, no. 4 (2010): 225–37.' ieee: 'G. Schryen, “Preserving knowledge on IS business value: what literature reviews have done,” Business \& Information Systems Engineering (BISE), vol. 52, no. 4, pp. 225–237, 2010.' mla: 'Schryen, Guido. “Preserving Knowledge on IS Business Value: What Literature Reviews Have Done.” Business \& Information Systems Engineering (BISE), vol. 52, no. 4, Springer, 2010, pp. 225–37.' short: G. Schryen, Business \& Information Systems Engineering (BISE) 52 (2010) 225–237. date_created: 2018-11-14T14:38:02Z date_updated: 2022-01-06T07:02:19Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:19:37Z date_updated: 2018-12-13T15:17:12Z file_id: '6187' file_name: BISE-PreservingknowledgeonISbusinessvalue-Manuscript-1.pdf file_size: 525443 relation: main_file file_date_updated: 2018-12-13T15:17:12Z has_accepted_license: '1' intvolume: ' 52' issue: '4' keyword: - Business value - Information systems - Literature review - Meta review language: - iso: eng oa: '1' page: 225-237 publication: Business \& Information Systems Engineering (BISE) publisher: Springer status: public title: 'Preserving knowledge on IS business value: what literature reviews have done' type: journal_article user_id: '61579' volume: 52 year: '2010' ... --- _id: '5645' abstract: - lang: eng text: The economic relevance of information systems has been studied for many years and has attracted an abundance of research papers. However, the ?productivity paradoxon? of the 1990s, Carr?s widely recognized paper ?IT doesn?t matter?, and several studies that do not find a positive correlation between IS investments and economic performance reveal long-lasting difficulties for IS researchers to explain ?IS business value?. Business executives and researchers also continue to question the value of IS investments. This raises the question of whether literature reviews have tapped their potential to address the concerns by covering key research areas of IS business value and preserving their key findings. In order to address this question, this paper identifies and describes 12 key research areas, and synthesizes what literature reviews published in pertinent academic outlets have done to preserve knowledge. The analysis of 22 literature reviews shows that some crucial areas have not been (sufficiently) covered. They provide fertile areas for future literature reviews. As this work is based on the results of more than 200 research papers, it is capable of drawing a comprehensive picture of the current state-of-the-art in IS business value research. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: Schryen G. Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done). Wirtschaftsinformatik. 2010;52(4):225-237. apa: Schryen, G. (2010). Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done). Wirtschaftsinformatik, 52(4), 225–237. bibtex: '@article{Schryen_2010, title={Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done)}, volume={52}, number={4}, journal={Wirtschaftsinformatik}, publisher={Gabler; Springer}, author={Schryen, Guido}, year={2010}, pages={225–237} }' chicago: 'Schryen, Guido. “Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews Zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done).” Wirtschaftsinformatik 52, no. 4 (2010): 225–37.' ieee: G. Schryen, “Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done),” Wirtschaftsinformatik, vol. 52, no. 4, pp. 225–237, 2010. mla: Schryen, Guido. “Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews Zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done).” Wirtschaftsinformatik, vol. 52, no. 4, Gabler; Springer, 2010, pp. 225–37. short: G. Schryen, Wirtschaftsinformatik 52 (2010) 225–237. date_created: 2018-11-14T14:38:45Z date_updated: 2022-01-06T07:02:19Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-11T15:21:36Z date_updated: 2018-12-13T15:19:50Z file_id: '6189' file_name: Schryen2010_Article_ÖkonomischerWertVonInformation.pdf file_size: 850718 relation: main_file file_date_updated: 2018-12-13T15:19:50Z has_accepted_license: '1' intvolume: ' 52' issue: '4' language: - iso: eng oa: '1' page: 225-237 publication: Wirtschaftsinformatik publisher: Gabler; Springer status: public title: Ökonomischer Wert von Informationssystemen - Beitrag von Literatur-Reviews zum Wissenserhalt ( = Preserving Knowledge on IS Business Value. What Literature Reviews Have Done) type: journal_article user_id: '61579' volume: 52 year: '2010' ... --- _id: '5597' abstract: - lang: eng text: Der Beitrag diskutiert die kontroversen Ans{\"a}tze ? Verifizierung versus Evaluation/Zertifizierung ? zur Sicherung elektronischer Wahlen mit Wahlger{\"a}ten. Dabei spielt das Urteils des Bundesverfassungsgerichts [BVG099] eine zentrale Rolle. Hierin wird entschieden, dass die Zertifizierung des Wahlger{\"a}tes nicht ausreicht und es werden Verifizierungsfunktionen gefordert, die den W{\"a}hlern die M{\"o}glichkeit geben sich von der Integrit{\"a}t des Wahlergebnisses zu {\"u}berzeugen. Der Beitrag zeigt auf, dass auch mit der Implementierung entsprechender Verifizierungsfunktionen nicht auf Zertifizierung verzichtet werden kann, da an ein Wahlger{\"a}t auch andere Anforderungen wie etwa hinsichtlich des Wahlgeheimnisses gestellt werden. Es wird au{\ss}erdem die Frage diskutiert, warum der Zertifizierung hinsichtlich dieser zus{\"a}tzlichen Anforderungen vertraut werden kann, w{\"a}hrend dies nicht der Fall bei der Integrit{\"a}tsanforderung ist. author: - first_name: Melanie full_name: Volkamer, Melanie last_name: Volkamer - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Lucie full_name: Langer, Lucie last_name: Langer - first_name: Axel full_name: Schmidt, Axel last_name: Schmidt - first_name: Johannes full_name: Buchmann, Johannes last_name: Buchmann citation: ama: 'Volkamer M, Schryen G, Langer L, Schmidt A, Buchmann J. Elektronische Wahlen: Verifizierung vs. Zertifizierung. In: Workshop Elektronische Wahlen, Elektronische Teilhabe, Societyware, 39th GI-Jahrestagung. ; 2009.' apa: 'Volkamer, M., Schryen, G., Langer, L., Schmidt, A., & Buchmann, J. (2009). Elektronische Wahlen: Verifizierung vs. Zertifizierung. In Workshop Elektronische Wahlen, elektronische Teilhabe, Societyware, 39th GI-Jahrestagung.' bibtex: '@inproceedings{Volkamer_Schryen_Langer_Schmidt_Buchmann_2009, title={Elektronische Wahlen: Verifizierung vs. Zertifizierung}, booktitle={Workshop Elektronische Wahlen, elektronische Teilhabe, Societyware, 39th GI-Jahrestagung}, author={Volkamer, Melanie and Schryen, Guido and Langer, Lucie and Schmidt, Axel and Buchmann, Johannes}, year={2009} }' chicago: 'Volkamer, Melanie, Guido Schryen, Lucie Langer, Axel Schmidt, and Johannes Buchmann. “Elektronische Wahlen: Verifizierung vs. Zertifizierung.” In Workshop Elektronische Wahlen, Elektronische Teilhabe, Societyware, 39th GI-Jahrestagung, 2009.' ieee: 'M. Volkamer, G. Schryen, L. Langer, A. Schmidt, and J. Buchmann, “Elektronische Wahlen: Verifizierung vs. Zertifizierung,” in Workshop Elektronische Wahlen, elektronische Teilhabe, Societyware, 39th GI-Jahrestagung, 2009.' mla: 'Volkamer, Melanie, et al. “Elektronische Wahlen: Verifizierung vs. Zertifizierung.” Workshop Elektronische Wahlen, Elektronische Teilhabe, Societyware, 39th GI-Jahrestagung, 2009.' short: 'M. Volkamer, G. Schryen, L. Langer, A. Schmidt, J. Buchmann, in: Workshop Elektronische Wahlen, Elektronische Teilhabe, Societyware, 39th GI-Jahrestagung, 2009.' date_created: 2018-11-14T11:49:04Z date_updated: 2022-01-06T07:02:05Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-18T13:15:26Z date_updated: 2018-12-18T13:15:26Z file_id: '6313' file_name: Elektronische Wahlen - GI 2009.pdf file_size: 60870 relation: main_file file_date_updated: 2018-12-18T13:15:26Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: Workshop Elektronische Wahlen, elektronische Teilhabe, Societyware, 39th GI-Jahrestagung status: public title: 'Elektronische Wahlen: Verifizierung vs. Zertifizierung' type: conference user_id: '61579' year: '2009' ... --- _id: '5621' abstract: - lang: eng text: Remote voting through the Internet provides convenience and access to the electorate. At the same time, the security concerns facing any distributed application are magnified when the task is so crucial to democratic society. In addition, some of the electoral process loses transparency when it is encapsulated in information technology. In this paper, we examine the public record of three recent elections that used Internet voting. Our specific goal is to identify any potential flaws that security experts would recognize, but may have not been identified in the rush to implement technology. To do this, we present a multiple exploratory case study, looking at elections conducted between 2006 and 2007 in Estonia, Netherlands, and Switzerland. These elections were selected as particularly interesting and accessible, and each presents its own technical and security challenges. The electoral environment, technical design and process for each election are described, including reconstruction of details which are implied but not specified within the source material. We found that all three elections warrant significant concern about voter security, verifiability, and transparency. Usability, our fourth area of focus, seems to have been well-addressed in these elections. While our analysis is based on public documents and previously published reports, and therefore lacking access to any confidential materials held by electoral officials, this comparative analysis provides interesting insight and consistent questions across all these cases. Effective review of Internet voting requires an aggressive stance towards identifying potential security and operational flaws, and we encourage the use of third party reviews with critical technology skills during design, programming, and voting to reduce the changes of failure or fraud that would undermine public confidence. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Eliot full_name: Rich, Eliot last_name: Rich citation: ama: 'Schryen G, Rich E. Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland. IEEE Transactions on Information Forensics \& Security. 2009;4(4 Part):729-744.' apa: 'Schryen, G., & Rich, E. (2009). Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland. IEEE Transactions on Information Forensics \& Security, 4(4 Part), 729–744.' bibtex: '@article{Schryen_Rich_2009, title={Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland}, volume={4}, number={4 Part}, journal={IEEE Transactions on Information Forensics \& Security}, publisher={IEEE}, author={Schryen, Guido and Rich, Eliot}, year={2009}, pages={729–744} }' chicago: 'Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.” IEEE Transactions on Information Forensics \& Security 4, no. 4 Part (2009): 729–44.' ieee: 'G. Schryen and E. Rich, “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland,” IEEE Transactions on Information Forensics \& Security, vol. 4, no. 4 Part, pp. 729–744, 2009.' mla: 'Schryen, Guido, and Eliot Rich. “Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland.” IEEE Transactions on Information Forensics \& Security, vol. 4, no. 4 Part, IEEE, 2009, pp. 729–44.' short: G. Schryen, E. Rich, IEEE Transactions on Information Forensics \& Security 4 (2009) 729–744. date_created: 2018-11-14T14:06:44Z date_updated: 2022-01-06T07:02:12Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-18T13:16:07Z date_updated: 2018-12-18T13:16:07Z file_id: '6316' file_name: JOURNAL VERSION.pdf file_size: 1544790 relation: main_file file_date_updated: 2018-12-18T13:16:07Z has_accepted_license: '1' intvolume: ' 4' issue: 4 Part keyword: - e-voting - Internet voting - Internet election - security - verifiability - RIES - Estonia - Neuch{\^a}tel language: - iso: eng oa: '1' page: 729-744 publication: IEEE Transactions on Information Forensics \& Security publisher: IEEE status: public title: 'Security in Large-Scale Internet Elections: A Retrospective Analysis of Elections in Estonia, The Netherlands, and Switzerland' type: journal_article user_id: '61579' volume: 4 year: '2009' ... --- _id: '5625' abstract: - lang: eng text: The increasing availability and deployment of open source software in personal and commercial environments makes open source software highly appealing for hackers, and others who are interested in exploiting software vulnerabilities. This deployment has resulted in a debate ?full of religion? on the security of open source software compared to that of closed source software. However, beyond such arguments, only little quantitative analysis on this research issue has taken place. We discuss the state-of-the-art of the security debate and identify shortcomings. Based on these, we propose new metrics, which allows to answer the question to what extent the review process of open source and closed source development has helped to fix vulnerabilities. We illustrate the application of some of these metrics in a case study on OpenOffice (open source software) vs. Microsoft Office (closed source software). author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen - first_name: Rouven full_name: Kadura, Rouven last_name: Kadura citation: ama: 'Schryen G, Kadura R. Open Source vs. Closed Source Software: Towards Measuring Security. In: 24th Annual ACM Symposium on Applied Computing. ; 2009.' apa: 'Schryen, G., & Kadura, R. (2009). Open Source vs. Closed Source Software: Towards Measuring Security. In 24th Annual ACM Symposium on Applied Computing.' bibtex: '@inproceedings{Schryen_Kadura_2009, title={Open Source vs. Closed Source Software: Towards Measuring Security}, booktitle={24th Annual ACM Symposium on Applied Computing}, author={Schryen, Guido and Kadura, Rouven}, year={2009} }' chicago: 'Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software: Towards Measuring Security.” In 24th Annual ACM Symposium on Applied Computing, 2009.' ieee: 'G. Schryen and R. Kadura, “Open Source vs. Closed Source Software: Towards Measuring Security,” in 24th Annual ACM Symposium on Applied Computing, 2009.' mla: 'Schryen, Guido, and Rouven Kadura. “Open Source vs. Closed Source Software: Towards Measuring Security.” 24th Annual ACM Symposium on Applied Computing, 2009.' short: 'G. Schryen, R. Kadura, in: 24th Annual ACM Symposium on Applied Computing, 2009.' date_created: 2018-11-14T14:12:27Z date_updated: 2022-01-06T07:02:13Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-18T13:14:09Z date_updated: 2018-12-18T13:14:09Z file_id: '6310' file_name: ACM VERSION.pdf file_size: 456497 relation: main_file file_date_updated: 2018-12-18T13:14:09Z has_accepted_license: '1' keyword: - Open source software - Closed source software - Security - Metrics language: - iso: eng oa: '1' publication: 24th Annual ACM Symposium on Applied Computing status: public title: 'Open Source vs. Closed Source Software: Towards Measuring Security' type: conference user_id: '61579' year: '2009' ... --- _id: '5646' abstract: - lang: eng text: While many theoretical arguments against or in favor of open source and closed source software development have been presented, the empirical basis for the assessment of arguments is still weak. Addressing this research gap, this paper presents a comprehensive empirical investigation of the patching behavior of software vendors/communities of widely deployed open source and closed source software packages, including operating systems, database systems, web browsers, email clients, and office systems. As the value of any empirical study relies on the quality of data available, this paper also discusses in detail data issues, explains to what extent the empirical analysis can be based on vulnerability data contained in the NIST National Vulnerability Database, and shows how data on vulnerability patches was collected by the author to support this study. The results of the analysis suggest that it is not the particular software development style that determines patching behavior, but rather the policy of the particular software vendor. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors. In: 5th International Conference on IT Security Incident Management \& IT Forensics. ; 2009.' apa: Schryen, G. (2009). A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors. In 5th International Conference on IT Security Incident Management \& IT Forensics. bibtex: '@inproceedings{Schryen_2009, title={A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors}, booktitle={5th International Conference on IT Security Incident Management \& IT Forensics}, author={Schryen, Guido}, year={2009} }' chicago: Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching Behavior of Open Source and Closed Source Software Vendors.” In 5th International Conference on IT Security Incident Management \& IT Forensics, 2009. ieee: G. Schryen, “A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors,” in 5th International Conference on IT Security Incident Management \& IT Forensics, 2009. mla: Schryen, Guido. “A Comprehensive and Comparative Analysis of the Patching Behavior of Open Source and Closed Source Software Vendors.” 5th International Conference on IT Security Incident Management \& IT Forensics, 2009. short: 'G. Schryen, in: 5th International Conference on IT Security Incident Management \& IT Forensics, 2009.' date_created: 2018-11-14T14:40:04Z date_updated: 2022-01-06T07:02:19Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-18T13:14:48Z date_updated: 2018-12-18T13:14:48Z file_id: '6311' file_name: Conference Version.pdf file_size: 594302 relation: main_file file_date_updated: 2018-12-18T13:14:48Z has_accepted_license: '1' language: - iso: eng oa: '1' publication: 5th International Conference on IT Security Incident Management \& IT Forensics status: public title: A comprehensive and comparative analysis of the patching behavior of open source and closed source software vendors type: conference user_id: '61579' year: '2009' ... --- _id: '5647' abstract: - lang: eng text: Reviewing literature on open source and closed source security reveals that the discussion is often determined by biased attitudes toward one of these development styles. The discussion specifically lacks appropriate metrics, methodology and hard data. This paper contributes to solving this problem by analyzing and comparing published vulnerabilities of eight open source software and nine closed source software packages, all of which are widely deployed. Thereby, it provides an extensive empirical analysis of vulnerabilities in terms of mean time between vulnerability disclosures, the development of disclosure over time, and the severity of vulnerabilities, and allows for validating models provided in the literature. The investigation reveals that (a) the mean time between vulnerability disclosures was lower for open source software in half of the cases, while the other cases show no differences, (b) in contrast to literature assumption, 14 out of 17 software packages showed a significant linear or piecewise linear correlation between time and the number of published vulnerabilities, and (c) regarding the severity of vulnerabilities, no significant differences were found between open source and closed source. author: - first_name: Guido full_name: Schryen, Guido id: '72850' last_name: Schryen citation: ama: 'Schryen G. Security of open source and closed source software: An empirical comparison of published vulnerabilities. In: 15th Americas Conference on Information Systems. ; 2009.' apa: 'Schryen, G. (2009). Security of open source and closed source software: An empirical comparison of published vulnerabilities. In 15th Americas Conference on Information Systems.' bibtex: '@inproceedings{Schryen_2009, title={Security of open source and closed source software: An empirical comparison of published vulnerabilities}, booktitle={15th Americas Conference on Information Systems}, author={Schryen, Guido}, year={2009} }' chicago: 'Schryen, Guido. “Security of Open Source and Closed Source Software: An Empirical Comparison of Published Vulnerabilities.” In 15th Americas Conference on Information Systems, 2009.' ieee: 'G. Schryen, “Security of open source and closed source software: An empirical comparison of published vulnerabilities,” in 15th Americas Conference on Information Systems, 2009.' mla: 'Schryen, Guido. “Security of Open Source and Closed Source Software: An Empirical Comparison of Published Vulnerabilities.” 15th Americas Conference on Information Systems, 2009.' short: 'G. Schryen, in: 15th Americas Conference on Information Systems, 2009.' date_created: 2018-11-14T14:41:24Z date_updated: 2022-01-06T07:02:19Z ddc: - '000' department: - _id: '277' extern: '1' file: - access_level: open_access content_type: application/pdf creator: hsiemes date_created: 2018-12-18T13:16:39Z date_updated: 2018-12-18T13:16:39Z file_id: '6317' file_name: Security of Open Source and Closed Source Software An Empirical - AMCIS Version.pdf file_size: 483690 relation: main_file file_date_updated: 2018-12-18T13:16:39Z has_accepted_license: '1' keyword: - Vulnerabilities - security - open source software - closed source software - empirical comparison language: - iso: eng oa: '1' publication: 15th Americas Conference on Information Systems status: public title: 'Security of open source and closed source software: An empirical comparison of published vulnerabilities' type: conference user_id: '61579' year: '2009' ...