Workshop session: Fourth international workshop on measurability of security in software architectures (MeSSa 2017)

Reijo Savola (Editor), Habtamu Abie (Editor), Teemu Kanstren (Editor)

Research output: Chapter in Book/Report/Conference proceedingOther book partScientific

Abstract

Cybersecurity incidents are increasing, and at the same time, our society depends more and more on cyber-physical systems. Systematic approaches to measure cybersecurity are needed in order to support efficient construction and maintenance of secure software systems. Security measurement of software architectures is needed to produce sufficient evidence of security level as early as in the design phase. Design-time security measuring should support "security by design" approach. Moreover, software architectures have to support runtime security measurement to obtain up-to-date security information from an online software system, service or product. Security metrics and measurements are exploited in situational awareness monitoring and self-adaptive security solutions. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted metrics definitions and applicable measuring techniques. Strong collaboration between security experts, software architects and system developers is needed to address this. MeSSa2017 workshop addresses these and other related topics to increase the importance of the overall picture, requiring sets of design patterns, measurements, metrics, best practices, and means to integrate this cost-effectively in the overall design and operational profiles.

The outcome of the workshop will be an increased shared understanding of challenges and opportunities in systematic approaches to measure cybersecurity, which are needed in order to support efficient construction and maintenance of secure software systems.
Original languageEnglish
Title of host publicationProceedings of the 11th European Conference on Software Architecture
Subtitle of host publicationCompanion Proceedings
PublisherAssociation for Computing Machinery ACM
ISBN (Electronic)978-1-4503-5217-8
Publication statusPublished - 2017
MoE publication typeNot Eligible
Event11th European Conference on Software Architecture, ECSA 2017 - Canterbury, United Kingdom
Duration: 11 Sep 201715 Sep 2017

Conference

Conference11th European Conference on Software Architecture, ECSA 2017
Abbreviated titleECSA 2017
CountryUnited Kingdom
CityCanterbury
Period11/09/1715/09/17

Fingerprint

Software architecture
Computer systems
Monitoring
Costs

Cite this

Savola, R., Abie, H., & Kanstren, T. (Eds.) (2017). Workshop session: Fourth international workshop on measurability of security in software architectures (MeSSa 2017). In Proceedings of the 11th European Conference on Software Architecture: Companion Proceedings Association for Computing Machinery ACM.
Savola, Reijo (Editor) ; Abie, Habtamu (Editor) ; Kanstren, Teemu (Editor). / Workshop session : Fourth international workshop on measurability of security in software architectures (MeSSa 2017). Proceedings of the 11th European Conference on Software Architecture: Companion Proceedings . Association for Computing Machinery ACM, 2017.
@inbook{54ca3000a06446d8a79de91b11ff20bc,
title = "Workshop session: Fourth international workshop on measurability of security in software architectures (MeSSa 2017)",
abstract = "Cybersecurity incidents are increasing, and at the same time, our society depends more and more on cyber-physical systems. Systematic approaches to measure cybersecurity are needed in order to support efficient construction and maintenance of secure software systems. Security measurement of software architectures is needed to produce sufficient evidence of security level as early as in the design phase. Design-time security measuring should support {"}security by design{"} approach. Moreover, software architectures have to support runtime security measurement to obtain up-to-date security information from an online software system, service or product. Security metrics and measurements are exploited in situational awareness monitoring and self-adaptive security solutions. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted metrics definitions and applicable measuring techniques. Strong collaboration between security experts, software architects and system developers is needed to address this. MeSSa2017 workshop addresses these and other related topics to increase the importance of the overall picture, requiring sets of design patterns, measurements, metrics, best practices, and means to integrate this cost-effectively in the overall design and operational profiles.The outcome of the workshop will be an increased shared understanding of challenges and opportunities in systematic approaches to measure cybersecurity, which are needed in order to support efficient construction and maintenance of secure software systems.",
author = "Reijo Savola and Habtamu Abie and Teemu Kanstren",
year = "2017",
language = "English",
booktitle = "Proceedings of the 11th European Conference on Software Architecture",
publisher = "Association for Computing Machinery ACM",
address = "United States",

}

Savola, R, Abie, H & Kanstren, T (eds) 2017, Workshop session: Fourth international workshop on measurability of security in software architectures (MeSSa 2017). in Proceedings of the 11th European Conference on Software Architecture: Companion Proceedings . Association for Computing Machinery ACM, 11th European Conference on Software Architecture, ECSA 2017, Canterbury, United Kingdom, 11/09/17.

Workshop session : Fourth international workshop on measurability of security in software architectures (MeSSa 2017). / Savola, Reijo (Editor); Abie, Habtamu (Editor); Kanstren, Teemu (Editor).

Proceedings of the 11th European Conference on Software Architecture: Companion Proceedings . Association for Computing Machinery ACM, 2017.

Research output: Chapter in Book/Report/Conference proceedingOther book partScientific

TY - CHAP

T1 - Workshop session

T2 - Fourth international workshop on measurability of security in software architectures (MeSSa 2017)

A2 - Savola, Reijo

A2 - Abie, Habtamu

A2 - Kanstren, Teemu

PY - 2017

Y1 - 2017

N2 - Cybersecurity incidents are increasing, and at the same time, our society depends more and more on cyber-physical systems. Systematic approaches to measure cybersecurity are needed in order to support efficient construction and maintenance of secure software systems. Security measurement of software architectures is needed to produce sufficient evidence of security level as early as in the design phase. Design-time security measuring should support "security by design" approach. Moreover, software architectures have to support runtime security measurement to obtain up-to-date security information from an online software system, service or product. Security metrics and measurements are exploited in situational awareness monitoring and self-adaptive security solutions. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted metrics definitions and applicable measuring techniques. Strong collaboration between security experts, software architects and system developers is needed to address this. MeSSa2017 workshop addresses these and other related topics to increase the importance of the overall picture, requiring sets of design patterns, measurements, metrics, best practices, and means to integrate this cost-effectively in the overall design and operational profiles.The outcome of the workshop will be an increased shared understanding of challenges and opportunities in systematic approaches to measure cybersecurity, which are needed in order to support efficient construction and maintenance of secure software systems.

AB - Cybersecurity incidents are increasing, and at the same time, our society depends more and more on cyber-physical systems. Systematic approaches to measure cybersecurity are needed in order to support efficient construction and maintenance of secure software systems. Security measurement of software architectures is needed to produce sufficient evidence of security level as early as in the design phase. Design-time security measuring should support "security by design" approach. Moreover, software architectures have to support runtime security measurement to obtain up-to-date security information from an online software system, service or product. Security metrics and measurements are exploited in situational awareness monitoring and self-adaptive security solutions. The area of security metrics and security assurance metrics research is evolving, but still lacks widely accepted metrics definitions and applicable measuring techniques. Strong collaboration between security experts, software architects and system developers is needed to address this. MeSSa2017 workshop addresses these and other related topics to increase the importance of the overall picture, requiring sets of design patterns, measurements, metrics, best practices, and means to integrate this cost-effectively in the overall design and operational profiles.The outcome of the workshop will be an increased shared understanding of challenges and opportunities in systematic approaches to measure cybersecurity, which are needed in order to support efficient construction and maintenance of secure software systems.

M3 - Other book part

BT - Proceedings of the 11th European Conference on Software Architecture

PB - Association for Computing Machinery ACM

ER -

Savola R, (ed.), Abie H, (ed.), Kanstren T, (ed.). Workshop session: Fourth international workshop on measurability of security in software architectures (MeSSa 2017). In Proceedings of the 11th European Conference on Software Architecture: Companion Proceedings . Association for Computing Machinery ACM. 2017