Title :
Security Assurance Aggregation for IT Infrastructures
Author :
Pham, Nguyen ; Riguidel, Michel
Author_Institution :
GET/Telecom, Paris
Abstract :
In the development of more extensive information systems, IT security becomes increasingly important. The need for a tool to measure current security assurance level is therefore vital in order to maintain and improve the overall security of deployed systems. In this paper, we discuss several security assurance aspects and the role of aggregation in this context. Then, we introduce a general method to combine security assurance information into system wide values. This method takes into account the fact that the relations in complex systems are non-linear and also the appearance of emergent properties. Furthermore, using patterns to simplify the process of the system security assurance assessment is presented as an enhancement.
Keywords :
information technology; security of data; IT infrastructures; complex systems; information security; security assurance aggregation; Aggregates; Availability; Communication system security; Cryptography; Information security; Information systems; Operating systems; Power system security; Testing; Workstations; assessment; security assurance; security assurance aggregation;
Conference_Titel :
Systems and Networks Communications, 2007. ICSNC 2007. Second International Conference on
Conference_Location :
Cap Esterel
Print_ISBN :
0-7695-2938-0
Electronic_ISBN :
978-0-7695-2938-7
DOI :
10.1109/ICSNC.2007.75
