Visible to the public Toward objective security measurability and manageability

TitleToward objective security measurability and manageability
Publication TypeConference Paper
Year of Publication2017
AuthorsFayyad, S., Noll, J.
Conference Name2017 14th International Conference on Smart Cities: Improving Quality of Life Using ICT IoT (HONET-ICT)
Date Publishedoct
ISBN Number978-1-5386-0759-6
Keywordscomposability, Databases, Embedded systems, Encryption, Engines, expert systems, Human Behavior, human factors, Internet of Things, IoT security, Measurement, Metrics, Multi-Metrics, objective evaluation, objective metric, privacy, Productivity, pubcrawl, Resiliency, security, security enhancement, security measurability, security metric

Security Evaluation and Management (SEM) is considerably important process to protect the Embedded System (ES) from various kinds of security's exploits. In general, SEM's processes have some challenges, which limited its efficiency. Some of these challenges are system-based challenges like the hetero-geneity among system's components and system's size. Some other challenges are expert-based challenges like mis-evaluation possibility and experts non-continuous availability. Many of these challenges were addressed by the Multi Metric (MM) framework, which depends on experts' or subjective evaluation for basic evaluations. Despite of its productivity, subjective evaluation has some drawbacks (e.g. expert misevaluation) foster the need for considering objective evaluations in the MM framework. In addition, the MM framework is system centric framework, thus, by modelling complex and huge system using the MM framework a guide is needed indicating changes toward desirable security's requirements. This paper proposes extensions for the MM framework consider the usage of objective evaluations and work as guide for needed changes to satisfy desirable security requirements.

Citation Keyfayyad_toward_2017