Mathematical model for security effectiveness figure of merit and its optimization

被引:0
作者
Belur, Sheela V. [1 ]
Gloster, Jonathan [1 ]
机构
[1] Van Dyke Technol Grp, Columbia, MD 21046 USA
来源
DATA MINING, INTRUSION DETECTION, INFORMATION ASSURANCE, AND DATA NETWORKS SECURITY 2008 | 2008年 / 6973卷
关键词
assured information system; federal information systems; modeling; security effectiveness; figure of merit; performance; security strength; mission usability; security controls; multiobjective optimization; constrained optimization; zero-one programming; mixed integer programming;
D O I
10.1117/12.775781
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
A new mathematical model for the prediction of the security figure of merit of an assured information system is proposed. The security effectiveness figure of merit is defined as a multi-variate composite function of the strength of security mechanism, usability, performance, and cost. The problem of determining the optimal set of security controls for a given system is then formulated as mathematical optimization problem and the potential methods of approach are addressed. The concept is illustrated with a simple example and the conclusions bring out the benefits of the model.
引用
收藏
页数:11
相关论文
共 7 条
[1]  
[Anonymous], 2002, ICSE 2002 P 24 INT C, DOI DOI 10.1145/581339.581370
[2]  
BARKER WC, 2004, NIST SPECIAL PUBLICA, P1
[3]  
*DODI, 2003, 85002 DODI, P1
[4]  
ROSS R, 2007, NIST SPECIAL PUBLICA, P1
[5]  
ROSS R, 2004, NIST SPECIAL PUBLICA, P1
[6]  
STINE K, 2007, NIST SPECIAL PUBLICA
[7]  
Stoneburner G., 2002, NIST SPECIAL PUBLICA, P1
1