Title :
Methodological foundations: enabling the next generation of security
Author :
Maxion, Roy A. ; Roberts, Rachel R M
Author_Institution :
Carnegie Mellon Univ., Pittsburgh, PA, USA
Abstract :
The promise of breakthroughs in computer security - experimental test beds, insider-detection advancements, biometrics, and user interfaces that are robust to human error-will remain empty as long as methodological details trail the hype. A few selected issues - operational definitions, reliability, internal validity, and external validity - serve to illustrate common sources of experimental error that may be brought to one´s attention by a written methodology. The first two issues regard valid measurement, and the second two regard valid experimentation. Together, they exemplify the importance of strong methodology in pushing the envelope of security.
Keywords :
security of data; biometrics; computer security methodology; insider detection; user interfaces; Computer security; Delay; Detectors; Event detection; Fault tolerance; Humans; Particle measurements; Telecommunication traffic; Testing; Timing; privacy; security;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2005.47
