Development of security metrics based on decomposition of security requirements and ontologies

Reijo Savola

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    1 Citation (Scopus)

    Abstract

    Systematically and carefully designed information security metrics can be used to provide evidence of the security solutions of the system under development. The lack of appropriate security solutions in software-intensive systems might have serious consequences for businesses and the stakeholders. We investigate holistic development of security metrics based on security requirement decomposition and ontologies. The high-level security requirements are expressed in terms of lower-level measurable components applying a decomposition approach. Security requirement analysis of a distributed messaging system is used as an example.
    Original languageEnglish
    Title of host publicationProceedings of the 4th International Conference on Software and Data Technologies, ICSOFT 2009. Vol. 2
    PublisherINSTICC Press
    Pages171-174
    ISBN (Print)978-989-674-010-8
    Publication statusPublished - 2009
    MoE publication typeA4 Article in a conference publication
    Event4th International Conference on Software and Data Technologies, ICSOFT - Sofia, Bulgaria
    Duration: 26 Jul 200929 Jul 2009

    Conference

    Conference4th International Conference on Software and Data Technologies, ICSOFT
    Country/TerritoryBulgaria
    CitySofia
    Period26/07/0929/07/09

    Fingerprint

    Dive into the research topics of 'Development of security metrics based on decomposition of security requirements and ontologies'. Together they form a unique fingerprint.

    Cite this