Towards an abstraction layer for security assurance measurements: Invited paper

Teemu Kanstrén, Reijo Savola, Antti Evesti, Heimo Pentikäinen, Artur Hecker, Moussa Ouedraogo, Kimmo Hätönen, Perttu Halonen, Christophe Blad, Oscar López, Saioa Ros

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    7 Citations (Scopus)

    Abstract

    Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.
    Original languageEnglish
    Title of host publicationECSA '10 Proceedings of the Fourth European Conference on Software Architecture
    Subtitle of host publicationCompanion Volume
    PublisherAssociation for Computing Machinery ACM
    Pages189-196
    ISBN (Print)978-1-4503-0179-4
    DOIs
    Publication statusPublished - 2010
    MoE publication typeA4 Article in a conference publication

    Fingerprint

    Electronic mail
    Taxonomies
    Risk management
    Availability

    Cite this

    Kanstrén, T., Savola, R., Evesti, A., Pentikäinen, H., Hecker, A., Ouedraogo, M., ... Ros, S. (2010). Towards an abstraction layer for security assurance measurements: Invited paper. In ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume (pp. 189-196). Association for Computing Machinery ACM. https://doi.org/10.1145/1842752.1842791
    Kanstrén, Teemu ; Savola, Reijo ; Evesti, Antti ; Pentikäinen, Heimo ; Hecker, Artur ; Ouedraogo, Moussa ; Hätönen, Kimmo ; Halonen, Perttu ; Blad, Christophe ; López, Oscar ; Ros, Saioa. / Towards an abstraction layer for security assurance measurements : Invited paper. ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, 2010. pp. 189-196
    @inproceedings{5c53e61905774eaa8c0333ebcfdb0187,
    title = "Towards an abstraction layer for security assurance measurements: Invited paper",
    abstract = "Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.",
    author = "Teemu Kanstr{\'e}n and Reijo Savola and Antti Evesti and Heimo Pentik{\"a}inen and Artur Hecker and Moussa Ouedraogo and Kimmo H{\"a}t{\"o}nen and Perttu Halonen and Christophe Blad and Oscar L{\'o}pez and Saioa Ros",
    year = "2010",
    doi = "10.1145/1842752.1842791",
    language = "English",
    isbn = "978-1-4503-0179-4",
    pages = "189--196",
    booktitle = "ECSA '10 Proceedings of the Fourth European Conference on Software Architecture",
    publisher = "Association for Computing Machinery ACM",
    address = "United States",

    }

    Kanstrén, T, Savola, R, Evesti, A, Pentikäinen, H, Hecker, A, Ouedraogo, M, Hätönen, K, Halonen, P, Blad, C, López, O & Ros, S 2010, Towards an abstraction layer for security assurance measurements: Invited paper. in ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, pp. 189-196. https://doi.org/10.1145/1842752.1842791

    Towards an abstraction layer for security assurance measurements : Invited paper. / Kanstrén, Teemu; Savola, Reijo; Evesti, Antti; Pentikäinen, Heimo; Hecker, Artur; Ouedraogo, Moussa; Hätönen, Kimmo; Halonen, Perttu; Blad, Christophe; López, Oscar; Ros, Saioa.

    ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, 2010. p. 189-196.

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    TY - GEN

    T1 - Towards an abstraction layer for security assurance measurements

    T2 - Invited paper

    AU - Kanstrén, Teemu

    AU - Savola, Reijo

    AU - Evesti, Antti

    AU - Pentikäinen, Heimo

    AU - Hecker, Artur

    AU - Ouedraogo, Moussa

    AU - Hätönen, Kimmo

    AU - Halonen, Perttu

    AU - Blad, Christophe

    AU - López, Oscar

    AU - Ros, Saioa

    PY - 2010

    Y1 - 2010

    N2 - Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.

    AB - Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.

    U2 - 10.1145/1842752.1842791

    DO - 10.1145/1842752.1842791

    M3 - Conference article in proceedings

    SN - 978-1-4503-0179-4

    SP - 189

    EP - 196

    BT - ECSA '10 Proceedings of the Fourth European Conference on Software Architecture

    PB - Association for Computing Machinery ACM

    ER -

    Kanstrén T, Savola R, Evesti A, Pentikäinen H, Hecker A, Ouedraogo M et al. Towards an abstraction layer for security assurance measurements: Invited paper. In ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM. 2010. p. 189-196 https://doi.org/10.1145/1842752.1842791