Skip to main content
Article
Can we measure security and how?
Seventh Annual Workshop on Cyber Security and Information Intelligence Research (2011)
  • Janusz Zalewski
  • Steve Drager
  • William McKeever
  • ANDREW J KORNECKI, Embry Riddle Aeronautical University
Abstract

In this paper, basic issues of measuring security as a system property are discussed. While traditional approaches to computer security metrics deal mostly with security at the enterprise or organizational level, fewer authors address security measurement at the operational level, that is, when the system is running. After reviewing some basic issues in security assessment, three possible ways of addressing the security measurement are outlined: theoretical, experimental and computational. The computational path in measuring security is pursued in more detail.

Keywords
  • Security,
  • software assurance
Disciplines
Publication Date
2011
Citation Information
Janusz Zalewski, Steve Drager, William McKeever and ANDREW J KORNECKI. "Can we measure security and how?" Seventh Annual Workshop on Cyber Security and Information Intelligence Research (2011)
Available at: http://works.bepress.com/ajk/10/