Title :
Security Is a Subset of Reliability
Author :
Geer, Daniel E., Jr. ; Conway, Daniel G.
Author_Institution :
In-Q-Tel, Arlington, VA
Abstract :
Reliability measures the deviation between the system and the specification. Security involves a subspace of reliability-only particular deviations-thus, security must be easier than reliability. Hastening over the delicate premise that the specification is always accurate and up-to-date, we can roughly align security with the subset of reliability where the cost of deviation per unit time is very high. This makes us wonder about measuring how risk tolerance scales and consequently where to point our our thumbs.
Keywords :
formal specification; risk management; security of data; software reliability; reliability measurement; risk tolerance scales; security; specification; Availability; Costs; Delay; Educational institutions; Manufacturing; Pediatrics; Protection; Redundancy; Security; Thumb; Dan Conway; Dan Geer; For Good Measure; Security; economics of security; metrics; reliability;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2008.151
