Security Measurement in Service-based Computing Systems

被引:0
作者
Mu, Chunyan [1 ]
Zeng, Wen [1 ]
机构
[1] Newcastle Univ, Sch Comp Sci, Newcastle Upon Tyne NE1 7RU, Tyne & Wear, England
来源
2012 FIFTH IEEE INTERNATIONAL CONFERENCE ON SERVICE-ORIENTED COMPUTING AND APPLICATIONS (SOCA) | 2012年
关键词
security; measurement; information; divergence; equivalence; relations;
D O I
暂无
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We propose a method for quantitative security analysis of service-based computing systems based on probabilistic and information theoretical approaches. We focus on the pattern of the user's behaviours with the service providers. We build probabilistic models from system observations at various levels of abstraction depending on the confidentiality preserving mechanisms applied by the system. The probabilistic models allow us to quantify a system's observable behaviours under any given security preserving mechanisms. We present a number of measurements on the confidentiality loss of the computing system. We show how such measurement can be used to determine the degree of protection provided by the computing solution.
引用
收藏
页数:8
相关论文
共 13 条
[1]  
[Anonymous], P 2005 NAT C DIG GOV
[2]  
Balduzzi Marco., 2012, Proceedings of the 27th Annual ACM Symposium on Applied Computing, SAC '12, P1427, DOI DOI 10.1145/2245276.2232005
[3]   Belief in information flow [J].
Clarkson, MR ;
Myers, AC ;
Schneider, FB .
18TH IEEE COMPUTER SECURITY FOUNDATIONS WORKSHOP, PROCEEDINGS, 2005, :31-45
[4]  
Denning D.E.R., 1982, CRYPTOGRAPHY DATA SE, V112, DOI [10.5555/539308, DOI 10.5555/539308]
[5]  
Goguen J. A., 1982, Proceedings of the 1982 Symposium on Security and Privacy, P11
[6]  
Jouini M., 2012, International Journal of Cyber-Security and Digital Forensics IJCSDF, V1, P248
[7]  
Landauer J., 1993, 1993 Computer Security Foundations Workshop VI Proceedings (Cat. No.93TH0561-1), P65, DOI 10.1109/CSFW.1993.246638
[8]  
McIver A, 2003, MG COMP SCI, P441
[9]  
McLean J., 1990, S P
[10]  
Millen J., 1987, S P
12