Quantifying security threats and their potential impacts: a case study

In earlier works we presented a computational infrastructure that allows an analyst to estimate the security of a system in terms of the loss that each stakeholder stands to sustain as a result of security breakdowns. In this paper we illustrate this infrastructure by means of an e-commerce application.

[1]  Kurt Rohloff,et al.  High-Assurance Distributed, Adaptive Software for Dynamic Systems , 2007 .

[2]  Steven Myers,et al.  A Case Study on Asprox Infection Dynamics , 2009, DIMVA.

[3]  U. Flegel,et al.  Detection of Intrusions and Malware & Vulnerability Assessment , 2004 .

[4]  Ali Mili,et al.  Evaluating security controls based on key performance indicators and stakeholder mission , 2008, CSIIRW '08.

[5]  K. Chandra Sekaran Requirements Driven Multiple View Paradigm for Developing Security Architecture , 2009 .

[6]  F. Sheldon,et al.  Methodology for Evaluating Security Controls Based on Key Performance Indicators and Stakeholder Mission , 2009 .

[7]  Ali Mili,et al.  Measuring Reliability as a Mean Failure Cost , 2007, 10th IEEE High Assurance Systems Engineering Symposium (HASE'07).

[8]  Zair Abdelouahab,et al.  Requirement Elicitation Based on Goals with Security and Privacy Policies in Electronic Commerce , 2005, WER.

[9]  Donald Firesmith,et al.  Specifying Reusable Security Requirements , 2004, J. Object Technol..

[10]  Ali Mili,et al.  Managing complex IT security processes with value based measures , 2009, 2009 IEEE Symposium on Computational Intelligence in Cyber Security.

[11]  Ali Mili,et al.  Challenging the Mean Time to Failure: Measuring Dependability as a Mean Failure Cost , 2009 .

[12]  Kahloul Laid,et al.  Coloured Reconfigurable Nets For Code Mobility Modeling , 2007 .

[13]  Robert L. Probert,et al.  E-Commerce Authentication: An Effective Countermeasures Design Model , 2003, ICEIS.

[14]  Ali Mili,et al.  Synopsis of Evaluating Security Controls Based on Key Performance Indicators and Stakeholder Mission Value , 2008, 2008 11th IEEE High Assurance Systems Engineering Symposium.

[15]  Ali Mili,et al.  Measuring Reliability as a Mean Failure Cost , 2007 .