Title :
Risk-based security engineering through the eyes of the adversary
Author :
Evans, Shelby ; Wallner, James
Author_Institution :
BBN Technol., Columbia, MD, USA
Abstract :
Today, security engineering for complex systems is typically done as an ad hoc process. Taking a risk-based security engineering approach replaces today´s ad hoc methods with a more rigorous and disciplined approach that uses a multi-criterion decision model. This approach builds on existing techniques for integrating risk analysis with classical systems engineering. A resulting security metric can be compared with cost and performance metrics in making engineering trade-off decisions.
Keywords :
ad hoc networks; decision theory; risk analysis; security of data; software engineering; systems engineering; ad hoc process; adversary model; complex systems; multicriterion decision model; performance metrics; risk analysis; risk metric; risk-based security engineering; security metric; systems engineering; Art; Costs; Design engineering; Eyes; Information security; Information systems; Measurement; Performance analysis; Risk analysis; Systems engineering and theory;
Conference_Titel :
Information Assurance Workshop, 2005. IAW '05. Proceedings from the Sixth Annual IEEE SMC
Print_ISBN :
0-7803-9290-6
DOI :
10.1109/IAW.2005.1495947
