Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry

Reijo Savola

doi:10.1109/ICSEA.2007.79

I
ICSEA
2007
International Conference on Software Engineering Advances (ICSEA 2007)
Abstract - Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Reijo Savola

International Conference on Software Engineering Advances (ICSEA 2007)

Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry

Cap Esterel, France

August 25-August 31

ISBN: 0-7695-2937-2

	ASCII Text	x
	Reijo Savola, "Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry," Software Engineering Advances, International Conference on, pp. 60, International Conference on Software Engineering Advances (ICSEA 2007), 2007.

	BibTex	x
	@article{ 10.1109/ICSEA.2007.79, author = {Reijo Savola}, title = {Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry}, journal ={Software Engineering Advances, International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2937-2}, pages = {60}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICSEA.2007.79}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Software Engineering Advances, International Conference on TI - Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry SN - 0-7695-2937-2 SP EP A1 - Reijo Savola, PY - 2007 KW - null VL - 0 JA - Software Engineering Advances, International Conference on ER -

Reijo Savola, VTT Technical Research Centre of Finland

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICSEA.2007.79

To obtain evidence of the security of different products or organizations, systematic approaches to measuring security are needed. We introduce a high abstraction level taxonomy to support the development of feasible security metrics, along with a survey of the emerging security metrics from the academic, governmental and industrial perspectives. With our taxonomy, we strive to bridge the gap between information security management and ICT products, and services security engineering. We believe that if common metrics approaches between different security disciplines can be found, this will advance our holistic understanding and capabilities, both in security management and engineering. Our taxonomy is based on comparing earlier taxonomy approaches and analyzing types of security metrics. Based on the survey, a discussion of future research directions is given in order to prompt advances in the field.

Citation:

Reijo Savola, "Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry," icsea, pp.60, International Conference on Software Engineering Advances (ICSEA 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.