Deakin University
Browse
ge-compositemetrics-2017.pdf (1.17 MB)

Composite metrics for network security analysis

Download (1.17 MB)
journal contribution
posted on 2018-01-01, 00:00 authored by Simon Enoch Yusuf, Jin B Hong, Mengmeng Ge, Dong Seong Kim
Security metrics present the security level of a system or a network in both qualitative and quantitative ways. In general, security metrics are used to assess the security level of a system and to achieve security goals. There are a lot of security metrics for security analysis, but there is no systematic classification of security metrics that is based on network reachability information. To address this, we propose a systematic classification of existing security metrics based on network reachability information. Mainly, we classify the security metrics into host-based and network-based metrics. The host-based metrics are classified into metrics “without probability” and “with probability”, while the network based metrics are classified into “path-based” and “non-path based”. Finally, we present and describe an approach to develop composite security metrics and it’s calculations using a Hierarchical Attack Representation Model (HARM) via an example network. Our novel classification of security metrics provides a new methodology to assess the security of a system.

History

Journal

Software networking

Volume

2017

Issue

1

Article number

7

Pagination

137 - 160

Publisher

River Publishers

Location

Delft, The Netherlands

ISSN

2445-9739

Language

eng

Publication classification

C1.1 Refereed article in a scholarly journal

Usage metrics

    Research Publications

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC