An Architecture Based on Agent-manager Model for Automated Data Collection of Security Metrics

The requirement of organizations on computer network makes information security a key element to the evolution and continuity of services in our society. Security metrics are developed in order to offer a quantitative and objective basis for security assurance. This study proposes an architecture based on the agent-manager management model to allow the automated data collection from several components in a computer network, aiming to expand the security metrics application. A tool for measurement and automated data collection of metrics based on the architecture proposed were developed and applied in a real computer environment. Tests were performed showing that the architecture proposed is able to integrate information control and support the security monitoring process. Keywords-computer network; security metrics; security management; automated data collection.

[1]  Andrew Jaquith Security Metrics: Replacing Fear, Uncertainty, and Doubt , 2007 .

[2]  N. Pham,et al.  A Near Real-Time System for Security Assurance Assessment , 2008, 2008 The Third International Conference on Internet Monitoring and Protection.

[3]  Sebastian Abeck,et al.  Integrated Management of Networked Systems: Concepts, Architectures and their Operational Application , 1999 .

[4]  Karen A. Scarfone,et al.  Cyber Security Metrics and Measures , 2008 .

[5]  Bruno Bogaz Zarpelão,et al.  Application of Security Metrics in a Metropolitan Network : A Case Study , 2010 .

[6]  Joongki Park,et al.  Java-based network management environment , 1998, ICC '98. 1998 IEEE International Conference on Communications. Conference Record. Affiliated with SUPERCOMM'98 (Cat. No.98CH36220).

[7]  Marianne Swanson,et al.  Security metrics guide for information technology systems , 2003 .

[8]  Attila Özgit,et al.  A Framework Based on Continuous Security Monitoring , 2010 .

[9]  Ryan Honeyman,et al.  The Quick Start Guide , 2014 .

[10]  Reijo Savola,et al.  Towards a Security Metrics Taxonomy for the Information and Communication Technology Industry , 2007, International Conference on Software Engineering Advances (ICSEA 2007).

[11]  Jae-Oh Lee,et al.  Enabling network management using Java technologies , 2000, IEEE Commun. Mag..