• DocumentCode
    3380993
  • Title

    Strategies for cost efficient security evaluations

  • Author

    Leiwo, Jussipekka ; Maskell, Douglas C.

  • Author_Institution
    Sch. of Comput. Eng., Nanyang Technol. Univ., Singapore
  • fYear
    2005
  • fDate
    21-24 Nov. 2005
  • Firstpage
    1
  • Lastpage
    6
  • Abstract
    Evaluating the security of IT products is costly and complex and in order to remain competitive, organizations engaging in security evaluations must aim at cost efficient evaluations. A criteria is established and used to assess the suitability of various strategies for cost efficient security evaluations. The results suggest, not surprisingly, a dependency between strategic role of security engineering and assurance and the suitability of cost efficiency strategies. While some strategies may result in immature security engineering process, they may be most cost efficient if evaluations are not in the core of the long term product engineering strategies. On the other hand, strategic importance of assurance and security evaluations suggests that the costs of a repeatable security engineering process can be justified by long term benefits.
  • Keywords
    product development; security of data; IT products; cost efficient security evaluations; long term product engineering strategies; Computer security; Costs; Cryptography; Data security; Energy consumption; North America; Power engineering computing; Power measurement; Power system security; Time measurement;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    TENCON 2005 2005 IEEE Region 10
  • Conference_Location
    Melbourne, Qld.
  • Print_ISBN
    0-7803-9311-2
  • Electronic_ISBN
    0-7803-9312-0
  • Type

    conf

  • DOI
    10.1109/TENCON.2005.301331
  • Filename
    4085131
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3380993