A Tool for Security Measuring and Probe Management

Tiandu Zhao, Antti Evesti, Teemu Kanstrén

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

Abstract

Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.
Original languageEnglish
Title of host publicationSoftware Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on
PublisherIEEE Institute of Electrical and Electronic Engineers
Pages1-6
ISBN (Electronic)978-1-5090-3713-1
ISBN (Print)978-1-5090-3714-8
DOIs
Publication statusPublished - 22 Sept 2016
MoE publication typeA4 Article in a conference publication
EventIEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016
- Vienna, Austria
Duration: 1 Aug 20163 Aug 2016

Conference

ConferenceIEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016
Abbreviated titleQRS 2016
Country/TerritoryAustria
CityVienna
Period1/08/163/08/16

Keywords

  • security measuring probe
  • situational awareness
  • security metric
  • security monitoring

Fingerprint

Dive into the research topics of 'A Tool for Security Measuring and Probe Management'. Together they form a unique fingerprint.

Cite this