Abstract | ||
---|---|---|
Self-adaptive security is needed due to vast amount of changes in an execution environment and threat landscape, which all cannot be anticipated at software design-time. Self-adaptive security requires means for monitoring a security level and decision making capability to improve the current security level. In this paper, we describe how security metrics are able to support self-adaptive security. The paper analyses benefits and challenges of security measuring from the self-adaptive security perspective. Thus, five benefits and three challenges of security metrics in self-adaptive security are described. Furthermore, the paper derives requirements that measuring causes for self-adaptive security. Based on the derived requirements, extension components for the MAPE (Monitor, Analyse, Plan and Execute) reference model are proposed. |
Year | DOI | Venue |
---|---|---|
2014 | 10.1145/2642803.2642808 | ECSA Workshops |
Keywords | Field | DocType |
algorithms,design,security metric,security,decision-making,architecture,measurement,protection mechanisms,self-adaptive | Security convergence,Security testing,Security through obscurity,Computer security,Computer science,Software security assurance,Security service,Cloud computing security,Security information and event management,Computer security model | Conference |
Citations | PageRank | References |
0 | 0.34 | 6 |
Authors | ||
3 |
Name | Order | Citations | PageRank |
---|---|---|---|
Antti Evesti | 1 | 102 | 11.02 |
Habtamu Abie | 2 | 163 | 14.75 |
Reijo Savola | 3 | 318 | 35.00 |