Secure System of Attack Patterns towards Application Security Metric Derivation
نویسندگان
چکیده
منابع مشابه
Secure System of Attack Patterns towards Application Security Metric Derivation
Attack pattern system exhibits a unique property of pattern sequential cascading nature which can be identified during the design phase of an application system implementing security scenarios. In this paper a mathematical framework of secure system of attack patterns is presented to verify the stated design specification property along with theoretical back ground work. The framework defines 1...
متن کاملSecure Adaptive Response Potential (SARP): A System Security Metric
System design, development and operational activities are monitored and evaluated to facilitate proper system security management in all phases of the system life-cycle. Effective system security metrics must address all phases of the system life-cycle as well as the associated organizational elements that interact during the system life-cycle to produce and operate the system of interest. A si...
متن کاملTowards the Development of Secure Information Systems: Security Reference Diagrams and Security Attack Scenarios
Security is one of the main challenges that developers of information systems face. However, current methodologies for information system development do not provide enough evidence of integrating successfully security concerns throughout the whole range of the development process. In this paper, we provide an approach towards the solution of two of the problems associated with the integration o...
متن کاملAn Attack Graph-Based Probabilistic Security Metric
To protect critical resources in today’s networked environments, it is desirable to quantify the likelihood of potential multi-step attacks that combine multiple vulnerabilities. This now becomes feasible due to a model of causal relationships between vulnerabilities, namely, attack graph. This paper proposes an attack graph-based probabilistic metric for network security and studies its effici...
متن کاملAttack Patterns for Security Requirements Engineering
The importance of security concerns at requirements engineering time is increasingly recognized. However, little support is available to help requirements engineers elaborate adequate, consistent, and complete security requirements. The paper presents a reuse-based approach for modeling, specifying, and analyzing application-specific security requirements. The method is based on a goal-oriented...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: International Journal of Computer Applications
سال: 2012
ISSN: 0975-8887
DOI: 10.5120/8384-1987