Development of security metrics based on decomposition of security requirements and ontologies

Reijo Savola

Development of security metrics based on decomposition of security requirements and ontologies

Reijo Savola

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

Abstract

Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.

Original language	English
Title of host publication	Proceedings of the 4th International Conference on Software and Data Technologies, ICSOFT 2009. Vol. 2
Publisher	INSTICC Press
Pages	171-174
ISBN (Print)	978-989-674-010-8
Publication status	Published - 2009
MoE publication type	A4 Article in a conference publication
Event	4th International Conference on Software and Data Technologies, ICSOFT - Sofia, Bulgaria Duration: 26 Jul 2009 → 29 Jul 2009

Conference

Conference	4th International Conference on Software and Data Technologies, ICSOFT
Country/Territory	Bulgaria
City	Sofia
Period	26/07/09 → 29/07/09

Cite this

@inproceedings{037acff352324cd4b41a2e2b2c498a73,

title = "Development of security metrics based on decomposition of security requirements and ontologies",

abstract = "Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.",

author = "Reijo Savola",

year = "2009",

language = "English",

isbn = "978-989-674-010-8",

pages = "171--174",

booktitle = "Proceedings of the 4th International Conference on Software and Data Technologies, ICSOFT 2009. Vol. 2",

publisher = "INSTICC Press",

address = "Portugal",

note = "4th International Conference on Software and Data Technologies, ICSOFT ; Conference date: 26-07-2009 Through 29-07-2009",

}

Development of security metrics based on decomposition of security requirements and ontologies. / Savola, Reijo.

Proceedings of the 4th International Conference on Software and Data Technologies, ICSOFT 2009. Vol. 2. INSTICC Press, 2009. p. 171-174.

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

TY - GEN

T1 - Development of security metrics based on decomposition of security requirements and ontologies

AU - Savola, Reijo

PY - 2009

Y1 - 2009

N2 - Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.

AB - Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.

M3 - Conference article in proceedings

SN - 978-989-674-010-8

SP - 171

EP - 174

BT - Proceedings of the 4th International Conference on Software and Data Technologies, ICSOFT 2009. Vol. 2

PB - INSTICC Press

T2 - 4th International Conference on Software and Data Technologies, ICSOFT

Y2 - 26 July 2009 through 29 July 2009

ER -

Development of security metrics based on decomposition of security requirements and ontologies

Abstract

Conference

Fingerprint

Cite this