My main research interest is the design of socio-technical systems. I have investigated different facets of socio-technical systems design, including security, adaptivity, and context-awareness. I am particularly interested in the use of (requirements) modeling languages for designing these systems, as well as in the role that game technology such as gamification and serious games can play to build better systems.
Before joining Utrecht University, I was a post-doctoral fellow at the Department of Computer Science, University of Toronto, Canada (2012-2013) and previously I was a post-doctoral researcher at the Department of Information Engineering and Computer Science, University of Trento, Italy (2011-2012). I obtained a Ph.D. from the same university (2006-2011) in the area of self-adaptive socio-technical systems.
My research is currently partially funded by the European Commission through the PACAS project (Participatory Architectural Change Management in ATM Systems). I participated in several regional, national and international research projects (NSERC-BIN, PAT-Mostro, MIUR-Mensa, EU-IP-Serenity, EU-IP-Aniketos, ERC-Lucretius). I serve and have served on the program committee of international conferences such as CAiSE, ER, AAMAS, REFSQ, MODELS, RCIS.
Security Requirements Engineering book
The book presents the STS method for designing secure software systems. The method focuses on the early stages of software design: requirements engineering. STS is model-driven: the central activity that the designers conduct is the construction of models that represent the security requirements of the system under design. These models are created using the Socio-Technical Security modeling language (STS-ml), which is thoroughly described in the book. In addition to presenting the STS-ml language and the STS method, the book describes the modeling and analysis software tool called STS-Tool that supports the presented approach through a graphical modeling environment, automated reasoning capabilities to verify the created models, and the automatic derivation of security requirements documents. The key message the authors convey through the book is that designing secure software systems has to adopt a socio-technical systems perspective, as opposed to considering just the technical aspects of the system. The book also features a background chapter concerning the computer and information security landscape, an application of the method to two case studies, and a detailed comparison to complementary and alternative approaches to security requirements engineering.
- Social Specifications of Business Processes with Azzurra (Fabiano Dalpiaz, Evellin Cardoso, Giulia Canobbio, Paolo Giorgini, John Mylopoulos), In Proceedings of the IEEE Ninth International Conference on Research Challenges in Information Science (RCIS 2015), IEEE, 2015. (Best Paper Award, selected among 199 submissions) [pdf]
- Modelling and Reasoning about Security Requirements in Socio-Technical Systems (Elda Paja, Fabiano Dalpiaz, Paolo Giorgini), In Data and Knowledge Engineering, 2015, volume 98, 2015 [pdf]
- Forging High-Quality User Stories: Towards a Discipline for Agile Requirements (Garm Lucassen, Fabiano Dalpiaz, Jan Martijn van der Werf, Sjaak Brinkkemper), In Proceedings of the 23rd IEEE International Requirements Engineering Conference (RE 2015), IEEE, 2015. (Acceptance rate: 19.8%) [pdf]
- Adaptive Socio-Technical Systems: a Requirements-driven Approach (Fabiano Dalpiaz, Paolo Giorgini, John Mylopoulos), In Requirements Engineering, Springer London, volume 18, 2013. [pdf]
- A Goal-based Framework for Contextual Requirements Modeling and Analysis (Raian Ali, Fabiano Dalpiaz, Paolo Giorgini), In Requirements Engineering, Springer London, volume 15, 2010. [pdf]