T. Santen: Preservation of Probabilistic Information Flow Under Refinement. Information and Computation (2007). To appear.
T. Santen: Security Engineering: Requirements Analysis, Specification and Implementation. Lecture Notes in Computer Science. Springer-Verlag, 2007. To appear.
S. Gürses, B. Berendt, T. Santen: Multilateral Security Requirements Analysis for Preserving Privacy in Ubiquitous Environments. Workshop on Ubiquitous Knowledge Discovery for users (UKDU'06). Proceedings.
T. Santen: A Formal Framework For Confidentiality-Preserving Refinement. In Proc. 11th European Symposium On Research In Computer Security (ESORICS). D. Gollmann, J. Meier, A. Sabelfeld (eds.), LNCS 4189, pages 225-242. Springer-Verlag, 2006.
T. Santen: Stepwise Development of Secure Systems. In Proc. International Conference on Computer Safety, Reliability and Security (SAFECOMP). J. Gorski (ed.), LNCS 4166, pages 142-155. Springer-Verlag, 2006.
F. Freiling, T. Santen: On the composition of compositional reasoning. In Architecting Systems with Trustworthy Components. R. Reussner, J. Stafford, and C. Szyperski (eds.), LNCS 3938, pages 137-151. Springer-Verlag, 2006.
T. Santen and D. Seifert. Executing UML state machines. Technical Report 2006-04, Fakultät für Elektrotechnik und Informatik, Technische Universität Berlin, 2006.
T. Santen and D. Seifert. TEAGER – test automation for UML state machines. In B. Biel, M. Book, V. Gruhn, editors, Software Engineering 2006, Lecture Notes in Informatics, pages 73-84. Gesellschaft für Informatik, 2006.
S. Gürses and T. Santen. Contextualizing security goals – a method for multilateral security requirements elicitation. In J. Dittmann, editor, Proc. Sicherheit 2006 – Schutz und Zuverlässigkeit, Lecture Notes in Informatics. Gesellschaft für Informatik, 2006.
T. Santen. Formale Entwicklungsmethoden und Analysetechniken. In P. Liggesmeyer and D. Rombach, editors, Software Engineering für Eingebettete Systeme, pages 251-282. Spektrum-Verlag, Elsevier, 2005.
S. Gürses, J. H. Jahnke, C. Obry, A. Onabajo, T. Santen, and M. Price. Eliciting confidentiality requirements in practice. In Proc. 15th Annual International Conference hosted by the IBM Centers for Advanced Studies (CASCON 2005). IBM, Canada, 2005.
T. Santen. Probabilistic confidentiality properties based on indistinguishability. In H. Federrath, editor, Proc. Sicherheit 2005 – Schutz und Zuverlässigkeit, Lecture Notes in Informatics, pages 113-124. Gesellschaft für Informatik, 2005.
D. Seifert, S. Helke, and T. Santen. Test case generation from UML statecharts. In M. Broy and A. V. Zamulin, editors, Proc. Perspectives of System Informatics 2003, LNCS 2890, pages 462-468. Springer-Verlag, 2004.
D. Seifert, S. Helke, and T. Santen. Conformance testing for statecharts. Technical Report 2003-1, Technische Universität Berlin, 2003.
Thomas Santen, Maritta Heisel, Andreas Pfitzmann: Confidentiality-Preserving Refinement is Compositional - Sometimes. Proc. 7th European Symposium on Research in Computer Security (ESORICS 2002). D. Gollmann, G. Karjoth, M. Waidner (eds.), LNCS 2502, pp. 194-211, Springer-Verlag, 2002.
Maritta Heisel, Thomas Santen, Jeanine Souquières: Toward a Formal Model of Software Components. Proc. 4th Int. Conf. on Formal Engineering Methods (ICFEM 2002). C. George, M. Huaikou (eds.), LNCS 2495, pp. 57-68, Springer-Verlag, 2002.
Graeme Smith, Florian Kammüller, Thomas Santen: Encoding Object-Z in Isabelle/HOL. Proc. ZB2002: Formal Specification and Development in Z and B . D. Bert, J. P. Bowen, M. C. Henson, K. Robinson (eds.), LNCS 2272, pp. 82-99, Springer-Verlag, 2002.
Thomas Santen, Andreas Pfitzmann, Maritta Heisel: Specification and Refinement of Secure IT-Systems (Extended Abstract). International Workshop on Refinement of Critical Systems: Methods, Tools and Experience (RCS'2002). M. Butler, T. Muntean (eds.), 2002.
Maritta Heisel, Andreas Pfitzmann, Thomas Santen: Confidentiality-Preserving Refinement. Proc. 14th IEEE Computer Security Foundations Workshop. pp. 295-305, IEEE Computer Society Press, 2001.
Steffen Helke, Thomas Santen: Mechanized Analysis of Behavioral Conformance in the Eiffel Base Libraries. FME 2001: Formal Methods for Increasing Software Productivity (FME 2001). J. Oliveira, P. Zave (eds.), LNCS 2021, pp. 20-42, Springer-Verlag, 2001.
B. Paech, T. Santen, U. Becker-Kornstaedt, B. Freimut, E. Kamsties, A. von Knethen, O. Laitenberger, M. Schlich, D. Seifert, C. Sühl: Ziele, Hypothesen und Validierungsmöglichkeiten für das Projekt QUASAR. Fraunhofer FIRST und IESE. IESE-Report Nr. 049.01/D, 2001.
Éric Meyer, Thomas Santen: Behavioural Conformance Verification in an Integrated Approach Using UML and B. Proc. 2nd International Conference on Integrated Formal Methods. W. Grieskamp, T. Santen, B. Stoddart (eds.), LNCS 1945, pp. 358-379, Springer-Verlag, 2000. Abstract.
Steffen Helke, André Nordwig, Thomas Santen, Dehla Sokenou: Scaling-Up von V&V-Techniken durch Integration und Abstraktion. Rigorose Entwicklung software-intensiver Systeme. Tagungsbericht GI 2000. M. Wirsing, M. Gogolla, H.-J. Kreowski, T. Nipkow, W. Reif (eds.), pp. 11-20. Bericht 0005, Institut für Informatik, Ludwig-Maximilians-Universität München, 2000.Abstract.
Thomas Santen: A Mechanized Logical Model of Z and Object-Oriented Specification. Shaker-Verlag, 2000. ISBN 3-8265-7650-0. (also: PhD dissertation, Technische Universität Berlin, 1999). available online!
Thomas Santen: Isomorphisms - A link between the shallow and the deep. Proc. Theorem Proving in Higher-Order Logics. Y. Bertot, G. Dowek, A. Hirschowitz, C. Paulin, L. Théry (eds.), LNCS 1690, pp. 37-54, Springer-Verlag, 1999. Abstract.
Kirsten Winter, Thomas Santen, Maritta Heisel: Specifying the Safety Controllers of Traffic Light Systems in Z and Statecharts. Proc. Sicherheit und Zuverlässigkeit software-basierter Systeme. F. Saglietti, W. Goerigk (eds.), Technical Report ISTec-A-367, pp. 126-137, ISTec GmbH, 1999. Abstract.
Thomas Santen: On the Semantic Relation of Z and HOL. Proc. ZUM '98. J. Bowen, A. Fett (eds.), LNCS 1493, pp. 96-115, Springer-Verlag, 1998. Abstract.
Kirsten Winter, Thomas Santen, Maritta Heisel: An Agenda for Specifying Software Components with Complex Data Models. Proc. Safecomp '98. W. Ehrenberger (ed.), LNCS, pp. 16-31, Springer-Verlag, 1998. Abstract.
Thomas Santen: A Theory of Structured Model-Based Specifications in Isabelle/HOL.Proc. Theorem Proving in Higher-Order Logics. E. L. Gunter, A. Felty (eds.), LNCS 1275, pp. 243-258, Springer-Verlag, 1997. Abstract.
Steffen Helke, Thomas Neustupny, Thomas Santen: Automating Test Case Generation from Z Specifications with Isabelle.Proc. ZUM '97: The Z Formal Specification Notation. J. Bowen, M. Hinchey, D. Till (eds.), LNCS 1212, pp. 52-71, Springer-Verlag, 1997.
Sabine Dick, Thomas Santen: Searching for a Global Search Algorithm. Journal of Automated Software Engineering 4(1), pp. 7-32, Kluwer Academic Publishers, 1997.
Kolyang, Thomas Santen, Burkhart Wolff: A Structure Preserving Encoding of Z in Isabelle/HOL. Theorem Proving in Higher-Order Logics. J. von Wright, J. Grundy, J. Harrison (eds.), LNCS 1125, pp. 283-298, Springer-Verlag, 1996. Abstract. Revised version (155k)
Kolyang, Thomas Santen, Burkhart Wolff: Towards a Structure Preserving Encoding of Z in HOL.Arbeitspapiere der GMD 986, April 1996. Abstract.
Kolyang, Thomas Santen, Burkhart Wolff: Correct and User-Friendly Implementation of Transformation Systems. FME '96 - Industrial Benefits and Advances in Formal Methods. M.-C. Gaudel, J. Woodcock (eds.), LNCS 1051, pp. 629-648, Springer-Verlag, 1996.
Sabine Dick, Thomas Santen: Searching for a Global Search Algorithm. Tenth Knowledge-Based Software Engineering Conference. H. Reubenstein, D. Setliff (eds.), pp. 52-60, IEEE Computer Society Press, 1995.
Thomas Santen, Florian Kammüller, Stefan Jähnichen, Martin Beyer: Formalization of Algebraic Specification in the Development Language Deva. KORSO: Methods, Languages, and Tools to Construct Correct Software. M. Broy and S. Jähnichen (eds.), LNCS 1009, pp. 223-238, Springer-Verlag, 1995.
Maritta Heisel, Thomas Santen, Dominik Zimmermann: Tool Support for Formal Software Development: A Generic Architecture. Software Engineering - ESEC '95, Proc. European Software Engineering Conference. W. Schaefer, P. Botella (eds.), LNCS 989, pp. 272-293, Springer-Verlag, 1995.
Maritta Heisel, Thomas Santen, Dominik Zimmermann: A Generic System Architecture for Strategy-Based Software Development.Technical Report 95-08, Dept. of Computer Science, Technical University of Berlin, 1995.
Maritta Heisel, Thomas Santen, Dominik Zimmermann: Strategy-Based Program Synthesis with IOSS. Proc. Workshop on Systems for Computer-Aided Specification, Development and Verification. B. Buth, R. Berghammer (eds.), Technical Report 9416, pp. 16-30, Christian-Albrechts-Universit"at Kiel, 1994.
Matthias Anlauff, Martin Beyer, Thomas Santen: Generische Sprachen in Systemen zur formalen Softwareentwicklung. Informatik - Wirtschaft - Gesellschaft. H. Reichel (eds.), Informatik aktuell, pp. 247-252, Springer-Verlag, 1993.
Thomas Santen: Formalization of the Spectrum methodology in Deva: Signature and Logical Calculus.Technical Report 93-04, Dept. of Computer Science, Technical University of Berlin, 1993.
Thomas Santen: Entwurf und Realisierung von Beweisstrategien zur Verifikation von rekursiven Prozeduren. Diplomarbeit, University of Karlsruhe, 1991.
Maritta Heisel, Thomas Santen: Formal Program Development by Goal Splitting and Backward Loop Formation. Technical Report, University of Karlsruhe, 1990.
Sibylle Mund, Thomas Santen: The cryptanalysis system. Technical Report HPL-ISC-TR-89-030, Hewlett-Packard Laboratories, Bristol, England, 1989.