Formal Analysis of Security Metrics and Risk - Information Security Theory and Practice: Security and Privacy of Mobile Devices in Wireless Communication
Conference Papers Year : 2011

Formal Analysis of Security Metrics and Risk

Abstract

Security metrics are usually defined informally and, therefore, the rigourous analysis of these metrics is a hard task. This analysis is required to identify the existing relations between the security metrics, which try to quantify the same quality: security.Risk, computed as Annualised Loss Expectancy, is often used in order to give the overall assessment of security as a whole. Risk and security metrics are usually defined separately and the relation between these indicators have not been considered thoroughly. In this work we fill this gap by providing a formal definition of risk and formal analysis of relations between security metrics and risk.
Fichier principal
Vignette du fichier
978-3-642-21040-2_22_Chapter.pdf (358.38 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01573302 , version 1 (09-08-2017)

Licence

Identifiers

Cite

Leanid Krautsevich, Fabio Martinelli, Artsiom Yautsiukhin. Formal Analysis of Security Metrics and Risk. 5th Workshop on Information Security Theory and Practices (WISTP), Jun 2011, Heraklion, Crete, Greece. pp.304-319, ⟨10.1007/978-3-642-21040-2_22⟩. ⟨hal-01573302⟩
291 View
89 Download

Altmetric

Share

More