Abstract

Security assurance evaluation (SAE) is a technique that helps organizations to appraise the trust and confidence that a system can be operated correctly and securely. This paper contributes to the research on quantitative SAE by proposing an ontology-based assurance metrics computation solution, which consists of (1) a quantitative SAE approach, (2) an ontology for modeling the security assurance components and metrics, and (3) a metrics calculation engine for automatically generating metrics values. The feasibility and effectiveness of the proposed ontology-based SAE approach are examined through a preliminary ontology evaluation as well as a practical application-based evaluation.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Developing Security Assurance Metrics to Support Quantitative Security Assurance Evaluation
Shao-Fang Wen ... Basel Katt
Journal of Cybersecurity and Privacy | VOL. 2
Shao-Fang Wen, et. al.Shao-Fang Wen ... Basel Katt
10 Aug 2022
Operational security assurance evaluation in open infrastructures
Sammy Haddad ... Samuel Dubus
-
Sammy Haddad, et. al.Sammy Haddad ... Samuel Dubus
01 Sep 2011
SAEOn: An Ontological Metamodel for Quantitative Security Assurance Evaluation
Shao-Fang Wen ... Basel Katt
-
Shao-Fang Wen, et. al.Shao-Fang Wen ... Basel Katt
01 Jan 2023
First International Workshop on Measurability of Security in Software Architectures -- MeSSa 2010
Reijo M Savola ... Teemu Kanstrén
-
Reijo M Savola, et. al.Reijo M Savola ... Teemu Kanstrén
23 Aug 2010
View more papers

More From: Journal of Applied Security Research

Paper Title
Journal
Date
Author
Privacy, Data Protection and Cyber Crimes: Mapping Perceptions of Pakistani Users
Fahad Nabeel ... Khuram Iqbal
Journal of Applied Security Research | VOL. ahead-of-print
Fahad Nabeel, et. al.Fahad Nabeel ... Khuram Iqbal
03 Jul 2024
A Comprehensive Survey of Social Engineering Attacks: Taxonomy of Attacks, Prevention, and Mitigation Strategies
Santosh Kumar Birthriya ... Ankit Kumar Jain
Journal of Applied Security Research | VOL. ahead-of-print
Santosh Kumar Birthriya, et. al.Santosh Kumar Birthriya ... Ankit Kumar Jain
01 Jul 2024
Theoretical and Experimental Framework for Estimating Cyber Victimization Risk in a Hybrid Physical-Virtual World
Ling Wu ... Kyung-Shick Choi
Journal of Applied Security Research | VOL. ahead-of-print
Ling Wu, et. al.Ling Wu ... Kyung-Shick Choi
15 Jun 2024
Cybersecurity Risk Management Scenarios for Teaching Information Security Management
Jordan Allison
Journal of Applied Security Research | VOL. ahead-of-print
Jordan AllisonJordan Allison
28 May 2024
View more papers