Security measuring for self-adaptive security

Antti Evesti, Habtamu Abie, Reijo Savola

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

Abstract

Self-adaptive security is needed due to vast amount of changes in an execution environment and threat landscape, which all cannot be anticipated at software design-time. Self-adaptive security requires means for monitoring a security level and decision making capability to improve the current security level. In this paper, we describe how security metrics are able to support self-adaptive security. The paper analyses benefits and challenges of security measuring from the self-adaptive security perspective. Thus, five benefits and three challenges of security metrics in self-adaptive security are described. Furthermore, the paper derives requirements that measuring causes for self-adaptive security. Based on the derived requirements, extension components for the MAPE (Monitor, Analyse, Plan and Execute) reference model are proposed.
Original languageEnglish
Title of host publicationProceedings of the 2014 European Conference on Software Architecture Workshops
Subtitle of host publicationECSAW '14
Place of PublicationAustria
PublisherAssociation for Computing Machinery ACM
Number of pages7
ISBN (Print)978-1-4503-2778-7
DOIs
Publication statusPublished - 2014
MoE publication typeA4 Article in a conference publication
Event8th European Conference on Software Architecture Workshops, ECSAW 2014 - Vienna, Austria
Duration: 25 Aug 201429 Aug 2014

Conference

Conference8th European Conference on Software Architecture Workshops, ECSAW 2014
Abbreviated titleECSAW 2014
CountryAustria
CityVienna
Period25/08/1429/08/14

Fingerprint

Software design
Decision making
Monitoring

Cite this

Evesti, A., Abie, H., & Savola, R. (2014). Security measuring for self-adaptive security. In Proceedings of the 2014 European Conference on Software Architecture Workshops: ECSAW '14 [5] Austria: Association for Computing Machinery ACM. https://doi.org/10.1145/2642803.2642808
Evesti, Antti ; Abie, Habtamu ; Savola, Reijo. / Security measuring for self-adaptive security. Proceedings of the 2014 European Conference on Software Architecture Workshops: ECSAW '14. Austria : Association for Computing Machinery ACM, 2014.
@inproceedings{2e17299b452249ffb7d114225d762239,
title = "Security measuring for self-adaptive security",
abstract = "Self-adaptive security is needed due to vast amount of changes in an execution environment and threat landscape, which all cannot be anticipated at software design-time. Self-adaptive security requires means for monitoring a security level and decision making capability to improve the current security level. In this paper, we describe how security metrics are able to support self-adaptive security. The paper analyses benefits and challenges of security measuring from the self-adaptive security perspective. Thus, five benefits and three challenges of security metrics in self-adaptive security are described. Furthermore, the paper derives requirements that measuring causes for self-adaptive security. Based on the derived requirements, extension components for the MAPE (Monitor, Analyse, Plan and Execute) reference model are proposed.",
author = "Antti Evesti and Habtamu Abie and Reijo Savola",
note = "Project code: 79314; 79668",
year = "2014",
doi = "10.1145/2642803.2642808",
language = "English",
isbn = "978-1-4503-2778-7",
booktitle = "Proceedings of the 2014 European Conference on Software Architecture Workshops",
publisher = "Association for Computing Machinery ACM",
address = "United States",

}

Evesti, A, Abie, H & Savola, R 2014, Security measuring for self-adaptive security. in Proceedings of the 2014 European Conference on Software Architecture Workshops: ECSAW '14., 5, Association for Computing Machinery ACM, Austria, 8th European Conference on Software Architecture Workshops, ECSAW 2014, Vienna, Austria, 25/08/14. https://doi.org/10.1145/2642803.2642808

Security measuring for self-adaptive security. / Evesti, Antti; Abie, Habtamu; Savola, Reijo.

Proceedings of the 2014 European Conference on Software Architecture Workshops: ECSAW '14. Austria : Association for Computing Machinery ACM, 2014. 5.

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

TY - GEN

T1 - Security measuring for self-adaptive security

AU - Evesti, Antti

AU - Abie, Habtamu

AU - Savola, Reijo

N1 - Project code: 79314; 79668

PY - 2014

Y1 - 2014

N2 - Self-adaptive security is needed due to vast amount of changes in an execution environment and threat landscape, which all cannot be anticipated at software design-time. Self-adaptive security requires means for monitoring a security level and decision making capability to improve the current security level. In this paper, we describe how security metrics are able to support self-adaptive security. The paper analyses benefits and challenges of security measuring from the self-adaptive security perspective. Thus, five benefits and three challenges of security metrics in self-adaptive security are described. Furthermore, the paper derives requirements that measuring causes for self-adaptive security. Based on the derived requirements, extension components for the MAPE (Monitor, Analyse, Plan and Execute) reference model are proposed.

AB - Self-adaptive security is needed due to vast amount of changes in an execution environment and threat landscape, which all cannot be anticipated at software design-time. Self-adaptive security requires means for monitoring a security level and decision making capability to improve the current security level. In this paper, we describe how security metrics are able to support self-adaptive security. The paper analyses benefits and challenges of security measuring from the self-adaptive security perspective. Thus, five benefits and three challenges of security metrics in self-adaptive security are described. Furthermore, the paper derives requirements that measuring causes for self-adaptive security. Based on the derived requirements, extension components for the MAPE (Monitor, Analyse, Plan and Execute) reference model are proposed.

U2 - 10.1145/2642803.2642808

DO - 10.1145/2642803.2642808

M3 - Conference article in proceedings

SN - 978-1-4503-2778-7

BT - Proceedings of the 2014 European Conference on Software Architecture Workshops

PB - Association for Computing Machinery ACM

CY - Austria

ER -

Evesti A, Abie H, Savola R. Security measuring for self-adaptive security. In Proceedings of the 2014 European Conference on Software Architecture Workshops: ECSAW '14. Austria: Association for Computing Machinery ACM. 2014. 5 https://doi.org/10.1145/2642803.2642808