AN ESTIMATION OF ATTACK SURFACE TO EVALUATE NETWORK (IN)SECURITY

Andrea Atzeni; Antonio Lioy

doi:10.5220/0002377304930497

AN ESTIMATION OF ATTACK SURFACE TO EVALUATE NETWORK (IN)SECURITY

Andrea Atzeni, Antonio Lioy

2007

Abstract

In spite of their importance, security measurement methods are unusual in practice. Security assessment is left in the hands of personel security experts’ judgment, with poor formal arguments on the security level of the underlying system. Thus, it is difficult to distinguish among security alternatives or justify possible security changes or improvements. In this work we focus on a limited but important set of security indicators, suitable to estimate the attack surface a system exposes, thus introducing a simple and objective metric for a fast evaluation of an important security facet.

Download

Paper Citation

in Harvard Style

Atzeni A. and Lioy A. (2007). AN ESTIMATION OF ATTACK SURFACE TO EVALUATE NETWORK (IN)SECURITY . In Proceedings of the Ninth International Conference on Enterprise Information Systems - Volume 3: ICEIS, ISBN 978-972-8865-90-0, pages 493-497. DOI: 10.5220/0002377304930497

in Bibtex Style

@conference{iceis07,
author={Andrea Atzeni and Antonio Lioy},
title={AN ESTIMATION OF ATTACK SURFACE TO EVALUATE NETWORK (IN)SECURITY},
booktitle={Proceedings of the Ninth International Conference on Enterprise Information Systems - Volume 3: ICEIS,},
year={2007},
pages={493-497},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002377304930497},
isbn={978-972-8865-90-0},
}

in EndNote Style

TY - CONF
JO - Proceedings of the Ninth International Conference on Enterprise Information Systems - Volume 3: ICEIS,
TI - AN ESTIMATION OF ATTACK SURFACE TO EVALUATE NETWORK (IN)SECURITY
SN - 978-972-8865-90-0
AU - Atzeni A.
AU - Lioy A.
PY - 2007
SP - 493
EP - 497
DO - 10.5220/0002377304930497