A Tool for Security Measuring and Probe Management

Tiandu Zhao, Antti Evesti, Teemu Kanstrén

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

Abstract

Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.
Original languageEnglish
Title of host publicationSoftware Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on
PublisherInstitute of Electrical and Electronic Engineers IEEE
Pages1-6
ISBN (Electronic)978-1-5090-3713-1
ISBN (Print)978-1-5090-3714-8
DOIs
Publication statusPublished - 22 Sep 2016
MoE publication typeA4 Article in a conference publication
EventIEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016
- Vienna, Austria
Duration: 1 Aug 20163 Aug 2016

Conference

ConferenceIEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016
Abbreviated titleQRS 2016
CountryAustria
CityVienna
Period1/08/163/08/16

Fingerprint

Reusability
Security systems
Monitoring

Keywords

  • security measuring probe
  • situational awareness
  • security metric
  • security monitoring

Cite this

Zhao, T., Evesti, A., & Kanstrén, T. (2016). A Tool for Security Measuring and Probe Management. In Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on (pp. 1-6). Institute of Electrical and Electronic Engineers IEEE. https://doi.org/10.1109/QRS-C.2016.5
Zhao, Tiandu ; Evesti, Antti ; Kanstrén, Teemu. / A Tool for Security Measuring and Probe Management. Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on. Institute of Electrical and Electronic Engineers IEEE, 2016. pp. 1-6
@inproceedings{957afebbd1ef46678bf058b89147ffaf,
title = "A Tool for Security Measuring and Probe Management",
abstract = "Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.",
keywords = "security measuring probe, situational awareness, security metric, security monitoring",
author = "Tiandu Zhao and Antti Evesti and Teemu Kanstr{\'e}n",
year = "2016",
month = "9",
day = "22",
doi = "10.1109/QRS-C.2016.5",
language = "English",
isbn = "978-1-5090-3714-8",
pages = "1--6",
booktitle = "Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on",
publisher = "Institute of Electrical and Electronic Engineers IEEE",
address = "United States",

}

Zhao, T, Evesti, A & Kanstrén, T 2016, A Tool for Security Measuring and Probe Management. in Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on. Institute of Electrical and Electronic Engineers IEEE, pp. 1-6, IEEE International Conference on Software Quality, Reliabililty & Security, QRS 2016
, Vienna, Austria, 1/08/16. https://doi.org/10.1109/QRS-C.2016.5

A Tool for Security Measuring and Probe Management. / Zhao, Tiandu; Evesti, Antti; Kanstrén, Teemu.

Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on. Institute of Electrical and Electronic Engineers IEEE, 2016. p. 1-6.

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

TY - GEN

T1 - A Tool for Security Measuring and Probe Management

AU - Zhao, Tiandu

AU - Evesti, Antti

AU - Kanstrén, Teemu

PY - 2016/9/22

Y1 - 2016/9/22

N2 - Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.

AB - Designing and maintaining correct security countermeasures to support trustworthiness require comprehensive understanding of current security posture, i.e., Situational Awareness (SA). Security SA means that a decision maker is aware of protected assets, existing vulnerabilities, and risk mitigation techniques. Applying security metrics offers a holistic way to gain Situational Awareness. However, it is a challenge to get input data for security measuring. Currently, systems produce the huge amount of security monitoring data, but this raw data is not in a uniform format or easily available for the measuring purposes. In this paper, we propose a Hostbased Security Instrumentation System (HSIS) to facilitate the development of security measuring probes for uniform data collection. The proposed solution supports reusability of measuring probes and makes it possible to manage and adapt probes at operation time. Security administrators and auditors can support trustworthiness with the solution by evaluating systems' security state.

KW - security measuring probe

KW - situational awareness

KW - security metric

KW - security monitoring

U2 - 10.1109/QRS-C.2016.5

DO - 10.1109/QRS-C.2016.5

M3 - Conference article in proceedings

SN - 978-1-5090-3714-8

SP - 1

EP - 6

BT - Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on

PB - Institute of Electrical and Electronic Engineers IEEE

ER -

Zhao T, Evesti A, Kanstrén T. A Tool for Security Measuring and Probe Management. In Software Quality, Reliability and Security Companion (QRS-C), 2016 IEEE International Conference on. Institute of Electrical and Electronic Engineers IEEE. 2016. p. 1-6 https://doi.org/10.1109/QRS-C.2016.5