| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Cybersecurity Evaluation of Enterprise Architectures: The e-SENS Case
Abstract : Technology management through enterprise architectures has already become a widespread practice across large enterprises. Modeling and evaluating the cybersecurity aspect of it, however, has just begun to get the needed attention. This paper presents a cybersecurity evaluation methodology developed for the reference architecture of the e-SENS project and derives a generic framework for cybersecurity evaluation of an enterprise architecture. The evaluation addresses both the high-level design artefacts (the reference architecture) and operational solutions. Therefore, both a conceptual and an empirical framework are developed as part of the methodology. The former extends a goal-based security model with a threat-view incorporating standardized guidelines on security measures, whereas the latter captures and systematizes implemented project-specific security practices. The resulting methodology effectively supports the evaluation and is easy to grasp by non-technical people. Moreover, it is lendable to formalization, supporting a semi-automatic process of solution architecture design.
https://hal.inria.fr/hal-03231354
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, May 20, 2021 - 6:18:17 PM
Last modification on : Friday, May 21, 2021 - 3:30:37 AM
Long-term archiving on: : Saturday, August 21, 2021 - 7:02:54 PM
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, May 20, 2021 - 6:18:17 PM
Last modification on : Friday, May 21, 2021 - 3:30:37 AM
Long-term archiving on: : Saturday, August 21, 2021 - 7:02:54 PM
File
491976_1_En_15_Chapter.pdf
Files produced by the author(s)
Licence
Distributed under a Creative Commons Attribution 4.0 International License