We have a live demo where you can play with three preloaded models. Additionally, by using CAIRIS as the repository for data you collect, you benefit from CAIRIS' automatic analysis, validation and visualisation capabilities. We built CAIRIS to support the activities need to build security AND usability into the earliest stages of software design. At GitHub, we see security as an issue we need to address as a community: one that affects all. We expect security to be 'built in' software, but software is useless if people can't or won't use it. These threats expose your organization to additional risk. CAIRIS has been made freely available under an Apache Software License. CAIRIS is the only tool that does all of this (and more).ĬAIRIS is also the only security design tool that supports the notion of environments, making it possible to model contexts of use. Still, others are centred around managing UX data. Some tools focus on the specification of requirements.
It was built from the ground up to support all the elements necessary for usability, requirements, and risk analysis. It is an open source platform for eliciting, specifying, and validating secure and usable systems.
CAIRIS stands for Computer Aided Integration of Requirements and Information Security.