• DocumentCode
    2976025
  • Title

    Automatic security analysis using security metrics

  • Author

    Sun, Kun ; Jajodia, Sushil ; Li, Jason ; Cheng, Yi ; Tang, Wei ; Singhal, Anoop

  • fYear
    2011
  • fDate
    7-10 Nov. 2011
  • Firstpage
    1207
  • Lastpage
    1212
  • Abstract
    Security metrics are valuable for measuring and comparing the amount of security provided by different systems and configurations. However, meaningful security metrics for networked systems are significantly difficult to define, evaluate, interpret, and visualize. We design a system that provides security metrics collection, security metrics management, and security metrics visualization for scalable and automatic security analysis. We first identify a set of new security metrics. Then, we show how to collect simple security metrics from the computers in a sample network. Next, we use Analytic Hierarchy Process (AHP) mechanism to compose two sophisticated security metrics, Criticality and Security Score, which are critical to measure the security risk. We also develop visualization tools to help administrators better understand and evaluate the system security using security metrics.
  • Keywords
    computer network security; data visualisation; decision making; analytic hierarchy process; automatic security analysis; computers; criticality; networked systems; scalable security analysis; security metrics collection; security metrics management; security metrics visualization; security risk; security score; Availability; Computers; Databases; Measurement; Security; Vectors; Visualization;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    MILITARY COMMUNICATIONS CONFERENCE, 2011 - MILCOM 2011
  • Conference_Location
    Baltimore, MD
  • ISSN
    2155-7578
  • Print_ISBN
    978-1-4673-0079-7
  • Type

    conf

  • DOI
    10.1109/MILCOM.2011.6127465
  • Filename
    6127465
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2976025