Towards an abstraction layer for security assurance measurements: Invited paper

Teemu Kanstrén, Reijo Savola, Antti Evesti, Heimo Pentikäinen, Artur Hecker, Moussa Ouedraogo, Kimmo Hätönen, Perttu Halonen, Christophe Blad, Oscar López, Saioa Ros

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

7 Citations (Scopus)

Abstract

Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.
Original languageEnglish
Title of host publicationECSA '10 Proceedings of the Fourth European Conference on Software Architecture
Subtitle of host publicationCompanion Volume
PublisherAssociation for Computing Machinery ACM
Pages189-196
ISBN (Print)978-1-4503-0179-4
DOIs
Publication statusPublished - 2010
MoE publication typeA4 Article in a conference publication

Fingerprint

Electronic mail
Taxonomies
Risk management
Availability

Cite this

Kanstrén, T., Savola, R., Evesti, A., Pentikäinen, H., Hecker, A., Ouedraogo, M., ... Ros, S. (2010). Towards an abstraction layer for security assurance measurements: Invited paper. In ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume (pp. 189-196). Association for Computing Machinery ACM. https://doi.org/10.1145/1842752.1842791
Kanstrén, Teemu ; Savola, Reijo ; Evesti, Antti ; Pentikäinen, Heimo ; Hecker, Artur ; Ouedraogo, Moussa ; Hätönen, Kimmo ; Halonen, Perttu ; Blad, Christophe ; López, Oscar ; Ros, Saioa. / Towards an abstraction layer for security assurance measurements : Invited paper. ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, 2010. pp. 189-196
@inproceedings{5c53e61905774eaa8c0333ebcfdb0187,
title = "Towards an abstraction layer for security assurance measurements: Invited paper",
abstract = "Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.",
author = "Teemu Kanstr{\'e}n and Reijo Savola and Antti Evesti and Heimo Pentik{\"a}inen and Artur Hecker and Moussa Ouedraogo and Kimmo H{\"a}t{\"o}nen and Perttu Halonen and Christophe Blad and Oscar L{\'o}pez and Saioa Ros",
year = "2010",
doi = "10.1145/1842752.1842791",
language = "English",
isbn = "978-1-4503-0179-4",
pages = "189--196",
booktitle = "ECSA '10 Proceedings of the Fourth European Conference on Software Architecture",
publisher = "Association for Computing Machinery ACM",
address = "United States",

}

Kanstrén, T, Savola, R, Evesti, A, Pentikäinen, H, Hecker, A, Ouedraogo, M, Hätönen, K, Halonen, P, Blad, C, López, O & Ros, S 2010, Towards an abstraction layer for security assurance measurements: Invited paper. in ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, pp. 189-196. https://doi.org/10.1145/1842752.1842791

Towards an abstraction layer for security assurance measurements : Invited paper. / Kanstrén, Teemu; Savola, Reijo; Evesti, Antti; Pentikäinen, Heimo; Hecker, Artur; Ouedraogo, Moussa; Hätönen, Kimmo; Halonen, Perttu; Blad, Christophe; López, Oscar; Ros, Saioa.

ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM, 2010. p. 189-196.

Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

TY - GEN

T1 - Towards an abstraction layer for security assurance measurements

T2 - Invited paper

AU - Kanstrén, Teemu

AU - Savola, Reijo

AU - Evesti, Antti

AU - Pentikäinen, Heimo

AU - Hecker, Artur

AU - Ouedraogo, Moussa

AU - Hätönen, Kimmo

AU - Halonen, Perttu

AU - Blad, Christophe

AU - López, Oscar

AU - Ros, Saioa

PY - 2010

Y1 - 2010

N2 - Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.

AB - Measurement of any complex, operational system is challenging due to the continuous independent evolution of the components. Security risks introduce another dimension of dynamicity, reflected to risk management and security assurance activities. The availability of different measurements and their properties will vary during the overall system lifecycle. To be useful, a measurement framework in this context needs to be able to adapt to both the changes in the target of measurement and in the available measurement infrastructure. In this study, we introduce a taxonomy-based approach for relating the available and attainable measurements to the measurement requirements of security assurance plans by providing an Abstraction Layer that makes it easier to manage these dynamic features. The introduced approach is investigated in terms of a security assurance case example of firewall functionality in a Push E-mail service system.

U2 - 10.1145/1842752.1842791

DO - 10.1145/1842752.1842791

M3 - Conference article in proceedings

SN - 978-1-4503-0179-4

SP - 189

EP - 196

BT - ECSA '10 Proceedings of the Fourth European Conference on Software Architecture

PB - Association for Computing Machinery ACM

ER -

Kanstrén T, Savola R, Evesti A, Pentikäinen H, Hecker A, Ouedraogo M et al. Towards an abstraction layer for security assurance measurements: Invited paper. In ECSA '10 Proceedings of the Fourth European Conference on Software Architecture: Companion Volume. Association for Computing Machinery ACM. 2010. p. 189-196 https://doi.org/10.1145/1842752.1842791