Title :
Evaluation of SOA Security Metrics Using Attack Graphs
Author :
Magott, Jan ; Woda, Marek
Author_Institution :
Inst. of Comput. Sci., Autom. Control, & Robot., Wroclaw Univ. of Technol., Wroclaw
Abstract :
First, different security metrics are presented. A proposal of risk assessment for service oriented architecture (SOA) is given. This proposal is based on service availability metrics. First metric represents costs (extend of damage), when the service is not available. The second one is a probability that the service is available. Foundations for calculating this probability by simulation using attack graphs are given. The attack graph is a representation of actions that end in a state where an intruder achieved his/her goal. A model of intrusion detection system is given too.
Keywords :
graph theory; probability; security of data; software architecture; software metrics; SOA security metrics; attack graphs; intruder; intrusion detection system; risk assessment; service availability metrics; service availability probability; service oriented architecture; Availability; Computer security; Information management; Information security; Intrusion detection; Knowledge management; Probability; Proposals; Semiconductor optical amplifiers; Service oriented architecture; SOA; attack graph; metrics; security;
Conference_Titel :
Dependability of Computer Systems, 2008. DepCos-RELCOMEX '08. Third International Conference on
Conference_Location :
Szklarska Poreba
Print_ISBN :
978-0-7695-3179-3
DOI :
10.1109/DepCoS-RELCOMEX.2008.16
