ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Security attribute evaluation method: a cost-benefit approach
Full text PdfPdf (932 KB)
Source International Conference on Software Engineering archive
Proceedings of the 24th International Conference on Software Engineering table of contents
Orlando, Florida
SESSION: Technical papers: Software evaluation table of contents
Pages: 232 - 240  
Year of Publication: 2002
ISBN:1-58113-472-X
Author
Shawn A. Butler  Carnegie Mellon University, Pittsburgh, PA
Sponsors
IEEE-CS\DATC : IEEE Computer Society
ACM: Association for Computing Machinery
SIGSOFT: ACM Special Interest Group on Software Engineering
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 28,   Downloads (12 Months): 178,   Citation Count: 17
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/581339.581370
What is a DOI?

ABSTRACT

Conducting cost-benefit analyses of architectural attributes such as security has always been difficult, because the benefits are difficult to assess. Specialists usually make security decisions, but program managers are left wondering whether their investment in security is well spent. This paper summarizes the results of using a cost-benefit analysis method called SAEM to compare alternative security designs in a financial and accounting information system. The case study presented in this paper starts with a multi-attribute risk assessment that results in a prioritized list of risks. Security specialists estimate countermeasure benefits and how the organization's risks are reduced. Using SAEM, security design alternatives are compared with the organization's current selection of security technologies to see if a more cost-effective solution is possible. The goal of using SAEM is to help information-system stakeholders decide whether their security investment is consistent with the expected risks.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Ross J. Anderson, Security Engineering: A Guide to Building Dependable Distributed Systems, John Wiley & Sons, Inc., New York, NY, 2001
 
2
Butler, Shawn and Fischbeck, Paul. Multi-Attribute Risk Assessment. Technical Report CMU-CS-01-169, December 2001.
 
3
Clemons, Robert T. and Reilly, Terence. Making Hard Decisions. Duxbury, 2001.
 
4
Norman Fenton , Shari Lawrence Pfleeger, Software metrics (2nd ed.): a rigorous and practical approach, PWS Publishing Co., Boston, MA, 1997
 
5
Christopher M. King , Curtis Dalton , Stephen H. Beck, Security Architecture: Design, Deployment, and Operations, McGraw-Hill Professional, 2001
 
6
National Institute of Standards and Technology Special Publications 800-30:Risk Management Guide (DRAFT), June 2001.
 
7
National Institute of Standards and Technology Special Publication 800-14: Generally Accepted Principles and Practices for Securing Information Technology Systems. 1996.
 
8
Yoon, K. Paul and Hwang, Ching-Lai Multiple Attribute Decision Making: An Introduction, Sage Publications, 1995.

CITED BY  17
Thomas Neubauer , Markus Klemen , Stefan Biffl, Business process-based valuation of IT-security, ACM SIGSOFT Software Engineering Notes, v.30 n.4, July 2005
Mary Shaw, "Self-healing": softening precision to avoid brittleness: position paper for WOSS '02: workshop on self-healing systems, Proceedings of the first workshop on Self-healing systems, November 18-19, 2002, Charleston, South Carolina
Charles Iheagwara , Andrew Blyth , Mukesh Singhal, Cost effective management frameworks for intrusion detection systems, Journal of Computer Security, v.12 n.5, p.777-798, September 2004
N. C. Audsley , R. E. Baker, A selection mechanism based upon the explicit expression of preference, Proceedings of the 1st ACM SIGSOFT workshop on Self-managed systems, p.13-17, October 31-November 01, 2004, Newport Beach, California
Riccardo Scandariato , Bart De Win , Wouter Joosen, Towards a measuring framework for security properties of software, Proceedings of the 2nd ACM workshop on Quality of protection, October 30-30, 2006, Alexandria, Virginia, USA
David Garlan , Bradley Schmerl, Architecture-driven modelling and analysis, Proceedings of the eleventh Australian workshop on Safety critical systems and software, p.3-17, August 31, 2006, Melbourne, Australia
Yue Chen, Stakeholder Value Driven Threat Modeling for Off the Shelf Based Systems, Companion to the proceedings of the 29th International Conference on Software Engineering, p.91-92, May 20-26, 2007
Christopher Scaffidi , Mary Shaw, Toward a Calculus of Confidence, Proceedings of the First International Workshop on The Economics of Software and Computation, p.7, May 20-26, 2007
Vahe Poladian , Joao Pedro Sousa , David Garlan , Mary Shaw, Dynamic Configuration of Resource-Aware Services, Proceedings of the 26th International Conference on Software Engineering, p.604-613, May 23-28, 2004
Fabio Massacci , Artsiom Yautsiukhin, An algorithm for the appraisal of assurance indicators for complex business processes, Proceedings of the 2007 ACM workshop on Quality of protection, October 29-29, 2007, Alexandria, Virginia, USA
Rinku Dewri , Nayot Poolsappasit , Indrajit Ray , Darrell Whitley, Optimal security hardening using multi-objective optimization on attack tree models of networks, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA
Yudistira Asnar , Paolo Giorgini , Paolo Ciancarini , Rocco Moretti , Maurizio Sebastianis , Nicola Zannone, An evaluation of business solutions in manufacturing enterprises, International Journal of Business Intelligence and Data Mining, v.3 n.3, p.305-329, December 2008
Thomas Neubauer , Johannes Heurix, Multiobjective decision support for defining secure business processes: a case study, International Journal of Business Intelligence and Data Mining, v.3 n.2, p.177-195, September 2008
Huaqiang Wei , Jim Alves-Foss , Terrence Soule , Hugh Pforsich , Du Zhang , Deborah Frincke, A Layered Decision Model for cost-effective system security, International Journal of Information and Computer Security, v.2 n.3, p.297-324, October 2008
Charles Pak, The near real time statistical asset priority driven (nrtsapd) risk assessment methodology, Proceedings of the 9th ACM SIGITE conference on Information technology education, October 16-18, 2008, Cincinnati, OH, USA
John Bailey , Antonio Drommi , Jeffrey Ingalsbe , Nancy Mead , Dan Shoemaker, A Common Sense Way to Make the Business Case for Software Assurance, The EDP Audit, Control, and Security Newsletter, v.38 n.3, p.8-20, September 2008
Golnaz Elahi , Eric Yu, Modeling and analysis of security trade-offs - A goal oriented approach, Data & Knowledge Engineering, v.68 n.7, p.579-598, July, 2009

INDEX TERMS

Primary Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)

Additional Classification:
  D. Software
  D.2 SOFTWARE ENGINEERING
      D.2.9 Management
          Subjects: Cost estimation

  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.3 Software Management
          Subjects: Software process


General Terms:
Algorithms, Design, Security

Collaborative Colleagues:
Shawn A. Butler: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player