• DocumentCode
    3115790
  • Title

    Information assurance measures and metrics - state of practice and proposed taxonomy

  • Author

    Vaughn, Rayford B., Jr. ; Henning, Ronda ; Siraj, Ambareen

  • Author_Institution
    Dept. of Comput. Sci., Mississippi State Univ., MS, USA
  • fYear
    2003
  • fDate
    6-9 Jan. 2003
  • Abstract
    The term "assurance" has been used for decades in trusted system development as an expression of confidence that one has in the strength of mechanisms or countermeasures. One of the unsolved problems of security engineering is the adoption of measures or metrics that can reliably depict the assurance associated with a specific hardware and software system. This paper reports on a recent attempt to focus requirements in this area by examining those currently in use. It then suggests a categorization of information assurance (IA) metrics that may be tailored to an organization\´s needs. We believe that the provision of security mechanisms in systems is a subset of the systems engineering discipline having a large software-engineering correlation. There is general agreement that no single system metric or any "one-prefect" set of IA metrics applies across all systems or audiences. The set most useful for an organization largely depends on their IA goals, their technical, organizational and operational needs, and the financial, personnel, and technical resources that are available.
  • Keywords
    information technology; risk analysis; security of data; systems engineering; financial resources; hardware system; information assurance measures; information assurance metrics; information technology; operational needs; organizational needs; personnel resources; security engineering; software system; software-engineering; system security mechanisms; taxonomy; technical needs; technical resources; trusted system development; Application software; Computer science; Computer security; Conferences; Government; Hardware; Information security; Reliability engineering; Software measurement; Taxonomy;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    System Sciences, 2003. Proceedings of the 36th Annual Hawaii International Conference on
  • Print_ISBN
    0-7695-1874-5
  • Type

    conf

  • DOI
    10.1109/HICSS.2003.1174904
  • Filename
    1174904