Abstract
Systematic approaches to measuring security are needed in order to
obtain evidence of the security performance of products or an organization. In
this study we survey the emerging security metrics approaches from the
academic, governmental and industrial perspectives and aim to bridge the gap
between information security management and Information and Communication
Technology (ICT) product security practices. If common metrics approaches
between different security disciplines can be found, this will advance our
holistic understanding and capabilities, both in management and engineering
practices.
Original language | English |
---|---|
Title of host publication | Proceedings of the 2007 ACM Workshop on Quality of Protection, QoP’07 |
Place of Publication | US |
Publisher | Association for Computing Machinery ACM |
Pages | 28-30 |
ISBN (Print) | 978-1-59593-885-5 |
DOIs | |
Publication status | Published - 2007 |
MoE publication type | A4 Article in a conference publication |
Event | 14th ACM Conference on Computer and Communications Security, CCS07 - Alexandria, Virginia, United States Duration: 29 Oct 2007 → … |
Conference
Conference | 14th ACM Conference on Computer and Communications Security, CCS07 |
---|---|
Abbreviated title | CCS07 |
Country/Territory | United States |
City | Alexandria, Virginia |
Period | 29/10/07 → … |