Skip to Main content Skip to Navigation
Conference papers

Formal Analysis of Security Metrics and Risk

Abstract : Security metrics are usually defined informally and, therefore, the rigourous analysis of these metrics is a hard task. This analysis is required to identify the existing relations between the security metrics, which try to quantify the same quality: security.Risk, computed as Annualised Loss Expectancy, is often used in order to give the overall assessment of security as a whole. Risk and security metrics are usually defined separately and the relation between these indicators have not been considered thoroughly. In this work we fill this gap by providing a formal definition of risk and formal analysis of relations between security metrics and risk.
Document type :
Conference papers
Complete list of metadata

Cited literature [27 references]  Display  Hide  Download

https://hal.inria.fr/hal-01573302
Contributor : Hal Ifip <>
Submitted on : Wednesday, August 9, 2017 - 10:24:25 AM
Last modification on : Tuesday, February 26, 2019 - 10:54:02 AM

File

978-3-642-21040-2_22_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Leanid Krautsevich, Fabio Martinelli, Artsiom Yautsiukhin. Formal Analysis of Security Metrics and Risk. 5th Workshop on Information Security Theory and Practices (WISTP), Jun 2011, Heraklion, Crete, Greece. pp.304-319, ⟨10.1007/978-3-642-21040-2_22⟩. ⟨hal-01573302⟩

Share

Metrics

Record views

521

Files downloads

168