Visible to the public Biblio

Filters: Keyword is Visualization of Security-Related Data  [Clear All Filters]
2019-05-20
Hanauer, Tanja, Hommel, Wolfgang, Metzger, Stefan, Pöhn, Daniela.  2018.  A Process Framework for Stakeholder-Specific Visualization of Security Metrics. Proceedings of the 13th International Conference on Availability, Reliability and Security. :28:1-28:10.

Awareness and knowledge management are key components to achieve a high level of information security in organizations. However, practical evidence suggests that there are significant discrepancies between the typical elements of security awareness campaigns, the decisions made and goals set by top-level management, and routine operations carried out by systems administration personnel. This paper presents Vis4Sec, a process framework for the generation and distribution of stakeholder-specific visualizations of security metrics, which assists in closing the gap between theoretical and practical information security by respecting the different points of view of the involved security report audiences. An implementation for patch management on Linux servers, deployed at a large data center, is used as a running example.