Designing Good Security Metrics
| Title | Designing Good Security Metrics |
| Publication Type | Conference Paper |
| Year of Publication | 2019 |
| Authors | Yee, George O. M. |
| Conference Name | 2019 IEEE 43rd Annual Computer Software and Applications Conference (COMPSAC) |
| Date Published | jul |
| Publisher | IEEE |
| ISBN Number | 978-1-7281-2607-4 |
| Keywords | designing, Firewalls (computing), good security metric, good security metrics, Human Behavior, Measurement, Measurement and Metrics Texting, Metrics, metrics testing, Organizations, policy-based governance, pubcrawl, resilience, Resiliency, security metrics, security of data, security weaknesses, Software, Standards organizations, step-by-step method, Testing, weaknesses |
| Abstract | This paper begins with an introduction to security metrics, describing the need for security metrics, followed by a discussion of the nature of security metrics, including the challenges found with some security metrics used in the past. The paper then discusses what makes a good security metric and proposes a rigorous step-by-step method that can be applied to design good security metrics, and to test existing security metrics to see if they are good metrics. Application examples are included to illustrate the method. |
| URL | https://ieeexplore.ieee.org/document/8754182 |
| DOI | 10.1109/COMPSAC.2019.10270 |
| Citation Key | yee_designing_2019 |
- pubcrawl
- weaknesses
- testing
- step-by-step method
- Standards organizations
- Software
- security weaknesses
- security of data
- Security Metrics
- Resiliency
- resilience
- Measurement
- policy-based governance
- Organizations
- Metrics
- Measurement and Metrics Texting
- Human behavior
- good security metrics
- good security metric
- Firewalls (computing)
- designing
- metrics testing