Title :
A Study of Security Requirements Negotiation
Author_Institution :
Dept. of Comput. Sci., Univ. of Auckland, Auckland, New Zealand
Abstract :
In service computing, a system is integrated by using the services of many service providers. The security of the services that constitutes the system affects the security of the integrated system. This paper studied the issues relating to security requirements of an integrated system using a game theoretical approach. It modeled a class of service computing applications as a security game. Using the game, the service providers and the system owners can analyse the security level and the security investment of the system. Using the results of the analysis, the system owners and the service providers can be more objective in their service level agreement negotiation.
Keywords :
contracts; game theory; security of data; service-oriented architecture; game theoretical approach; integrated system; security game; security investment; security requirements negotiation; service computing; service level agreement negotiation; service providers; service-oriented architecture; Computational modeling; Equations; Games; Nash equilibrium; Security; Service computing; game theory; service computing; service level agreement; system security;
Conference_Titel :
Dependable, Autonomic and Secure Computing (DASC), 2014 IEEE 12th International Conference on
Conference_Location :
Dalian
Print_ISBN :
978-1-4799-5078-2
DOI :
10.1109/DASC.2014.18
