Model-based assurance of security controls

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Model-based assurance of security controls

Full text

Pdf (364 KB)

Source

Conference on Computer and Communications Security archive
Proceedings of the 2007 ACM workshop on Quality of protection table of contents

Alexandria, Virginia, USA

POSTER SESSION: Poster Session table of contents

Pages: 55 - 55

Year of Publication: 2007

ISBN:978-1-59593-885-5

Authors

Yolanta Beres	HP Laboratories, Bristol, United Kngdm
Adrian Baldwin	HP Laboratories, Bristol, United Kngdm
Simon Shiu	HP Laboratories, Bristol, United Kngdm

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM: Association for Computing Machinery

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 7, Downloads (12 Months): 63, Citation Count: 0

Additional Information:

abstract index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/1314257.1314275 What is a DOI?

ABSTRACT

We present an innovative way to assess the effectiveness of security controls where measurable aspects of controls are first captured in models and then the models are used to analyze the security data gathered from the IT environment. The aim is to lift the risk and security control assessment lifecycle from a series of people based processes to one where model based technology enhances and automates the process.

INDEX TERMS

Primary Classification:
K. Computing Milieux
K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
K.6.4 System Management
Subjects: Management audit