Abstract
Measuring the security level of an information system to
acquire reliable perception of its state requires the use
of various different security metrics that can provide
extensive security evidence of the system. Visualization
can then be used to facilitate the management of the
security metrics and measurements and to enhance
understanding on their relationships. This paper
introduces a tool for modeling and monitoring the
security state of a system and focuses on the
visualization aspects of the tool. The security metrics
of a system are organized hierarchically in the tool, so
that more general and conceptual security metrics on the
higher levels are connected to detailed, low-level
measurements. The tool helps bring meaningfulness to the
security metrics and helps the user be more aware of the
security state of the system during runtime use of the
tool. By having organized security evidence from
high-level objectives to low-level measurements the user
is able to act on the security incidents more
proficiently.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2014 European Conference on Software Architecture Workshops, ECSAW '14 |
Place of Publication | New York |
Publisher | Association for Computing Machinery ACM |
Number of pages | 7 |
ISBN (Print) | 978-1-4503-2778-7 |
DOIs | |
Publication status | Published - 2014 |
MoE publication type | A4 Article in a conference publication |
Event | 8th European Conference on Software Architecture Workshops, ECSAW 2014 - Vienna, Austria Duration: 25 Aug 2014 → 29 Aug 2014 |
Conference
Conference | 8th European Conference on Software Architecture Workshops, ECSAW 2014 |
---|---|
Abbreviated title | ECSAW 2014 |
Country/Territory | Austria |
City | Vienna |
Period | 25/08/14 → 29/08/14 |
Keywords
- security metric
- visualization
- situation awareness
- cyber security