A Framework for Measurability of Security
This document presents a framework for evaluating the security of Internet of Things (IoT) systems. It discusses the challenges in assessing security for IoT systems, such as heterogeneity, complexity, changeability, and scale. The framework proposes a Multi-Metrics approach to address these challenges, considering factors like Security, Privacy, and Dependability. It emphasizes automatic and less expert-dependent evaluation to enhance system security. The framework allows system administrators to reevaluate security without expert knowledge by using expert-set parameters to assess security levels based on system structures.
Uploaded on Mar 09, 2025 | 0 Views
Download Presentation
Please find below an Image/Link to download the presentation.
The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.
You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.
The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.
E N D
Presentation Transcript
A Framework for Measurability of Security Seraj Fayyad and Josef Noll April 2017
Automatic and less experts-dependent evaluation for is needed to enhance system security Security evaluation for IoT system Multi metrics approach From component to metric Framework structure 2
Evaluation of the security for IoT systems have various challenges Examples: - Heterogeneity among system components. - Complexity of the system - Changeability of the system - System scale 3
Multi Metrics approach considers evaluation challenges within IoT system For Security, Privacy and Dependability (SPD) Many parameters determine the significant (Weight) of the component or subsystem (interconnection equation) Metric significant (Wm) based on the significant of its component and on the evaluated Cs In MM X and W is evaluated by expert, who run the whole evaluation. 4
Using component type, correspondence security metrics could be identified System consist of Subsystemn Subsystem1 Subsystem2 consist of ............................. cn c2 c1 Component types (Input, Output, Processing, Storing, Transmission, System) Has ........... a2 a1 an Impacted by ........... f1 prHas f2 fn . . . . . . Has ........... op2 opn op1 ........... ........... Mn M1 5
Multi Metrics based security measurability framework, automatic and less experts-dependent evaluation 6
In conclusion: Using MM framework system admin could reevaluate system security without being expert in in security Expert sets the Cs resulted from different options for a given security parameters. System admin structure the system using the framework MM Framework evaluates the security level of the system base on system structure. Acknowledgement: this work was done as apart of IoTSec project Questions? 7
