TraceSEC: Traceability and explainability of security in software development

TraceSEC addresses the following research vision: Quality models are used to organize safety-related information at multiple levels. Tracing security-related activities using artifacts and a quality model addresses all three core challenges at once: development, problem analysis, and learning. Software organizations should evaluate security-related traces, compare them, and reuse them through soft matching and intelligent operations. Automated support and human judgment shall be combined, making TraceSEC a truly socio-technical approach.