Security Metrics Foundations for Computer Security

Trček, Denis

doi:10.1093/comjnl/bxp094

Cited by 7 publications

(5 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Information Assurance is a great name in respect of combining both. Additionally, Information Assurance is also responsible for the managing manual contents and it deals managerial affairs leading to rules, regulation, framework etc [12], [20], [21]. Hence as far as SCAP is concerned it is needed for better and healthy security policies designing and development.…”

Section: Scap Componentsmentioning

confidence: 99%

Information Assurance with special reference to the Security Content Automation Protocol (SCAP) — <i>An Overview</i>

Paul

Aithal

2019

SSRN Journal

View full text Add to dashboard Cite

Information Assurance, in short, is called as IA. This is responsible for securing information systems and computing. The term holds the highest degree of security related affairs. In generally Computer Security considered as a branch and area of security but now apart from this, Information Security, IT Security, and Information Assurance considered as important. And among these, security related domain Information Assurance treated as broader and interdisciplinary. Moreover, this Information Assurance holds all the areas and dealing of IT Security and Information Security but additionally, it is responsible for the designing, development of policies, regulation and guidelines of security related projects /proposal, etc. And among the administrative and protocol related affairs Security Content Automation Protocol treated as important. In short, it is called as SCAP. It is a kind of method for using specific standards for the purpose of enabling vulnerability management systems in an automated way for the measurement as well as policy compliance assessment regarding the systems inbuilt in a company or institutions; that may include IT company or may not be. This is a conceptual paper, initially, it has discussed with the areas of Information Assurance but gradually it has described about the Security Content Automation Protocol; including its aim and objectives, versions, etc. paper mentioned all the areas in short and simple sense.

show abstract

Section: Scap Componentsmentioning

confidence: 99%

Information Assurance with special reference to the Security Content Automation Protocol (SCAP) — <i>An Overview</i>

Paul

Aithal

2019

SSRN Journal

View full text Add to dashboard Cite

show abstract

“…Fortunately, the metrics area is slowly changing and, consequently, sensible reactive and active risk management solutions are becoming feasible. However, means for proactive risk management are still missing (Trcˇek 2009). And that is where innovations techniques can come into play.…”

Section: Deployment Of Innovation Techniques For Is Security Managementmentioning

confidence: 99%

Driving Information Systems Security through Innovations—First Indications

Trček

Likar

2014

Cybernetics and Systems

View full text Add to dashboard Cite

“…The virtuality level of a team has become an integral part of a team's definition [24]. Many variables are affected by the virtuality level of a team.…”

Section: Virtualitymentioning

confidence: 99%

“…Many leading industry security products [20] are already SCAP standard validated, and utilize above described benefits. Our approach [24] follows the above structure, builds on it (the implementation is still an on-going process), and can be used to improve risk management on strategic and/or tactical level with the development of business flight simulators. In addition, these simulators may be used for automated support of decision-making and could be thus self-adapting security information and event management systems enablers.…”

Section: Towards a Computerized Risk Management Architecturementioning

confidence: 99%