@inproceedings{abb65afd3bc94e32a254682f07a2ac22,
title = "Towards security evaluation based on evidence collection (Short paper)",
abstract = "Information security evaluation of software-intensive systems typically relies heavily on the experience of the security professionals. Obviously, automated approaches are needed in this field. Unfortunately, there is no practical approach to carrying out security evaluation in a systematic way. We introduce a general-level holistic framework for security evaluation based on security behavior modeling and security evidence collection, and discuss its applicability to the design of security evaluation experimentation set-ups in real-world systems.",
keywords = "information security, software, security, security evaluation",
author = "Reijo Savola",
year = "2006",
doi = "10.1007/11881599_146",
language = "English",
isbn = "3-540-45916-2",
series = "Lecture Notes in Computer Science",
publisher = "Springer",
number = "4223",
pages = "1178--1181",
booktitle = "Proceedings of the 3rd International Conference on Fuzzy Systems and Knowledge Discovery, FSKD 2006",
address = "Germany",
note = "3rd International Conference on Fuzzy Systems and Knowledge Discovery, FSKD 2006, FSKD 2006 ; Conference date: 24-09-2006 Through 28-09-2006",
}