Applicability of a Cryptographic Metric Taxonomy in Cryptosystem Procurement Process and in Evaluation of Open Standards

Outi-Marja Latvala, Jani Suomalainen, Kimmo Halunen, Markku Kylänpää, Reijo Savola, Mikko Kiviharju

Research output: Contribution to journalArticleScientificpeer-review

Abstract

Measuring the security of cryptographic systems in a simple and effective way is a difficult problem. There are several metrics that need to be taken into account. Earlier studies have produced one taxonomy of these different metrics, but the applicability of the taxonomy and the different metrics have not been tested. In this paper, we present a revised taxonomy of metrics for cryptographic systems and show results of applying it in two different scenarios: a procurement process for cryptosystems and in evaluation of open standards, namely the TLS 1.2 and TLS 1.3 standards. Applicability and meaningfulness of a taxonomy depends on its ability to differentiate cryptosystems and thus enable comparisons. Our results show that the revised taxonomy can help in differentiating systems and standards, especially when examining implementation related metrics. Future work should streamline the overly complex evaluation process.
Original languageEnglish
Pages (from-to)121-135
JournalInternational Journal on Advances in Security
Volume13
Issue number3&4
Publication statusPublished - 2020
MoE publication typeA1 Journal article-refereed

Keywords

  • cryptography
  • metrics
  • taxonomy
  • evaluation

Fingerprint

Dive into the research topics of 'Applicability of a Cryptographic Metric Taxonomy in Cryptosystem Procurement Process and in Evaluation of Open Standards'. Together they form a unique fingerprint.

Cite this