A Security Metrics Taxonomization Model for Software-Intensive Systems


Reijo M Savola, Journal of Information Processing Systems Vol. 5, No. 4, pp. 197-206, Dec. 2009  

https://doi.org/10.3745/JIPS.2009.5.4.197
Keywords: security metrics, Security Objectives, Taxonomy, Correctness, Effectiveness, Efficiency
Fulltext:

Abstract

We introduce a novel high-level security metrics objective taxonomization model for softwareintensive systems. The model systematizes and organizes security metrics development activities. It focuses on the security level and security performance of technical systems while taking into account the alignment of metrics objectives with different business and other management goals. The model emphasizes the roles of security-enforcing mechanisms, the overall security quality of the system under investigation, and secure system lifecycle, project and business management. Security correctness, effectiveness and efficiency are seen as the fundamental measurement objectives, determining the directions for more detailed security metrics development. Integration of the proposed model with riskdriven security metrics development approaches is also discussed.


Statistics
Show / Hide Statistics

Statistics (Past 3 Years)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.




Cite this article
[APA Style]
Savola, R. (2009). A Security Metrics Taxonomization Model for Software-Intensive Systems. Journal of Information Processing Systems, 5(4), 197-206. DOI: 10.3745/JIPS.2009.5.4.197.

[IEEE Style]
R. M. Savola, "A Security Metrics Taxonomization Model for Software-Intensive Systems," Journal of Information Processing Systems, vol. 5, no. 4, pp. 197-206, 2009. DOI: 10.3745/JIPS.2009.5.4.197.

[ACM Style]
Reijo M Savola. 2009. A Security Metrics Taxonomization Model for Software-Intensive Systems. Journal of Information Processing Systems, 5, 4, (2009), 197-206. DOI: 10.3745/JIPS.2009.5.4.197.