Combining Technical and Financial Impacts for Countermeasure Selection

Combining Technical and Financial Impacts for Countermeasure Selection

Research in information security has generally focused on providing a comprehensive interpretation of threats, vulnerabilities, and attacks, in particular to evaluate their danger and prioritize responses accordingly. Most of the current approaches propose advanced techniques to detect intrusions an...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:Electronic proceedings in theoretical computer science 2014-10, Vol.165 (Proc. AIDP 2014), p.1-14
Hauptverfasser: Gonzalez-Granadillo, Gustavo, Ponchel, Christophe, Blanc, Gregory, Debar, Hervé
Format: Artikel
Sprache:eng
Schlagworte:
Computer Science
Cryptography and Security
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Research in information security has generally focused on providing a comprehensive interpretation of threats, vulnerabilities, and attacks, in particular to evaluate their danger and prioritize responses accordingly. Most of the current approaches propose advanced techniques to detect intrusions and complex attacks but few of these approaches propose well defined methodologies to react against a given attack. In this paper, we propose a novel and systematic method to select security countermeasures from a pool of candidates, by ranking them based on the technical and financial impact associated to each alternative. The method includes industrial evaluation and simulations of the impact associated to a given security measure which allows to compute the return on response investment for different candidates. A simple case study is proposed at the end of the paper to show the applicability of the model
ISSN:2075-2180
2075-2180
DOI:10.4204/EPTCS.165.1