Abstract
Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.
Original language | English |
---|---|
Title of host publication | Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on |
Publisher | IEEE Institute of Electrical and Electronic Engineers |
Pages | 1-6 |
ISBN (Electronic) | 978-1-5090-3713-1 |
ISBN (Print) | 978-1-5090-3714-8 |
DOIs | |
Publication status | Published - 22 Sept 2016 |
MoE publication type | A4 Article in a conference publication |
Event | IEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016 - Vienna, Austria Duration: 1 Aug 2016 → 3 Aug 2016 |
Conference
Conference | IEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016 |
---|---|
Abbreviated title | QRS 2016 |
Country/Territory | Austria |
City | Vienna |
Period | 1/08/16 → 3/08/16 |
Keywords
- security measuring probe
- situational awareness
- security metric
- security monitoring