Skip to main content
OSTI.GOVU.S. Department of Energy Office of Scientific and Technical Information
U.S. Department of Energy
Office of Scientific and Technical Information
 

Synopsis of Evaluating Security Controls Based on Key Performance Indicators and Stakeholder Mission Value

Conference ·
 [1];  [1];  [2]
  1. ORNL
  2. New Jersey Institute of Technology
+ Show Author Affiliations
Information security continues to evolve in response to disruptive changes with a persistent focus on information-centric controls and a healthy debate about balancing endpoint and network protection, with the goal of improved enterprise and business risk management. Economic uncertainty, intensively collaborative work styles, virtualization, increased outsourcing and ongoing compliance pressures require careful consideration and adaptation of a balanced approach. The Cyberspace Security Econometrics System (CSES) provides a measure of reliability, security and safety of a system that accounts for the criticality of each requirement as a function of one or more stakeholders' interests in that requirement. For a given stakeholder, CSES reflects the variance that mayexist among the stakes one attaches to meeting each requirement. This paper summarizes the basis, objectives and capabilities for the CSES includinginputs/outputs as well as the structural underpinnings.
Research Organization:
Oak Ridge National Laboratory (ORNL), Oak Ridge, TN (United States)
Sponsoring Organization:
USDOE
DOE Contract Number:
AC05-00OR22725
OSTI ID:
946765
Country of Publication:
United States
Language:
English

References (15)

Sixth workshop on software quality conference January 2008
Financially informed requirements prioritization conference May 2005
Value-based software engineering: a case study journal March 2003
Distributed priority ranking of strategic preliminary requirements for management information systems in economic organizations journal September 2007
Developing a SSE-CMM-based security risk assessment process for patient-centered healthcare systems conference January 2008
Evaluating security controls based on key performance indicators and stakeholder mission
  • Sheldon, Frederick T.; Abercrombie, Robert K.; Mili, Ali
  • Proceedings of the 4th annual workshop on Cyber security and informaiton intelligence research developing strategies to meet the cyber security and information intelligence challenges ahead - CSIIRW '08 https://doi.org/10.1145/1413140.1413188
conference January 2008
Designing an economic-driven evaluation framework for process-oriented software technologies conference May 2006
A view of 20th and 21st century software engineering conference May 2006
Methodology for Evaluating Security Controls Based on Key Performance Indicators and Stakeholder Mission conference January 2009
A value-based approach for understanding cost-benefit trade-offs during automated software traceability
  • Egyed, Alexander; Biffl, Stefan; Heindl, Matthias
  • Proceedings of the 3rd international workshop on Traceability in emerging forms of software engineering - TEFSE '05 https://doi.org/10.1145/1107656.1107658
conference January 2005
Measuring Reliability as a Mean Failure Cost conference November 2007
Value-based software engineering journal March 2003
A case study on value-based requirements tracing
  • Heindl, Matthias; Biffl, Stefan
  • Proceedings of the 10th European software engineering conference held jointly with 13th ACM SIGSOFT international symposium on Foundations of software engineering - ESEC/FSE-13 https://doi.org/10.1145/1081706.1081717
conference January 2005
Balanced Decision Making in Software Engineering--General Thoughts and a Concrete Example from Industry conference May 2007
Value-Based Software Engineering book January 2006

Similar Records

Methodology for Evaluating Security Controls Based on Key Performance Indicators and Stakeholder Mission
Conference · Wed Dec 31 23:00:00 EST 2008 · OSTI ID:946487
Cyberspace Security Econometrics System (CSES) - U.S. Copyright TXu 1-901-039
Book · Tue Dec 31 23:00:00 EST 2013 · OSTI ID:1143596
Cyberspace Security Econometrics System (CSES)
Software · Fri Jul 27 00:00:00 EDT 2012 · OSTI ID:1231723

Related Subjects

97 MATHEMATICS AND COMPUTING
99 GENERAL AND MISCELLANEOUS
COMPUTER NETWORKS
Cyber Security
Cyber Security Controls
ECONOMETRICS
INFORMATION SYSTEMS
Risk Assessment
Risk Management
SECURITY