DEVELOPMENT OF SECURITY METRICS - Based on Decomposition of Security Requirements and Ontologies

Reijo M. Savola

doi:10.5220/0002243501710174

DEVELOPMENT OF SECURITY METRICS - Based on Decomposition of Security Requirements and Ontologies

Reijo M. Savola

2009

Abstract

Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.

Download

Paper Citation

in Harvard Style

M. Savola R. (2009). DEVELOPMENT OF SECURITY METRICS - Based on Decomposition of Security Requirements and Ontologies . In Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT, ISBN 978-989-674-010-8, pages 171-174. DOI: 10.5220/0002243501710174

in Bibtex Style

@conference{icsoft09,
author={Reijo M. Savola},
title={DEVELOPMENT OF SECURITY METRICS - Based on Decomposition of Security Requirements and Ontologies},
booktitle={Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT,},
year={2009},
pages={171-174},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002243501710174},
isbn={978-989-674-010-8},
}

in EndNote Style

TY - CONF
JO - Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT,
TI - DEVELOPMENT OF SECURITY METRICS - Based on Decomposition of Security Requirements and Ontologies
SN - 978-989-674-010-8
AU - M. Savola R.
PY - 2009
SP - 171
EP - 174
DO - 10.5220/0002243501710174