A Layered Decision Model for Cost-Effective System Security
Abstract
System security involves decisions in at least three areas: identification of well-defined security policies, selection of cost-effective defence strategies, and implementation of real-time defence tactics. Although choices made in each of these areas affect the others, existing decision models typically handle these three decision areas in isolation. There is no comprehensive tool that can integrate them to provide a single efficient model for safeguarding a network. In addition, there is no clear way to determine which particular combinations of defence decisions result in cost-effective solutions. To address these problems, this paper introduces a Layered Decision Model (LDM) for use in deciding how to address defence decisions based on their cost-effectiveness. To validate the LDM and illustrate how it is used, we used simulation to test model rationality and applied the LDM to the design of system security for an e-commercial business case.
- Authors:
- Publication Date:
- Research Org.:
- Pacific Northwest National Lab. (PNNL), Richland, WA (United States)
- Sponsoring Org.:
- USDOE
- OSTI Identifier:
- 974998
- Report Number(s):
- PNNL-SA-61549
TRN: US201007%%935
- DOE Contract Number:
- AC05-76RL01830
- Resource Type:
- Journal Article
- Journal Name:
- International Journal of Information and Computer Security, 2(3):297-324
- Additional Journal Information:
- Journal Volume: 2; Journal Issue: 3
- Country of Publication:
- United States
- Language:
- English
- Subject:
- 99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE; BUSINESS; DESIGN; IMPLEMENTATION; SECURITY; SIMULATION; layered decision model; LDM; system security; cost-benefit analysis; model validation e-commerce
Citation Formats
Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, and Frincke, Deborah A. A Layered Decision Model for Cost-Effective System Security. United States: N. p., 2008.
Web. doi:10.1504/IJICS.2008.020607.
Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, & Frincke, Deborah A. A Layered Decision Model for Cost-Effective System Security. United States. https://doi.org/10.1504/IJICS.2008.020607
Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, and Frincke, Deborah A. 2008.
"A Layered Decision Model for Cost-Effective System Security". United States. https://doi.org/10.1504/IJICS.2008.020607.
@article{osti_974998,
title = {A Layered Decision Model for Cost-Effective System Security},
author = {Wei, Huaqiang and Alves-Foss, James and Soule, Terry and Pforsich, Hugh and Zhang, Du and Frincke, Deborah A},
abstractNote = {System security involves decisions in at least three areas: identification of well-defined security policies, selection of cost-effective defence strategies, and implementation of real-time defence tactics. Although choices made in each of these areas affect the others, existing decision models typically handle these three decision areas in isolation. There is no comprehensive tool that can integrate them to provide a single efficient model for safeguarding a network. In addition, there is no clear way to determine which particular combinations of defence decisions result in cost-effective solutions. To address these problems, this paper introduces a Layered Decision Model (LDM) for use in deciding how to address defence decisions based on their cost-effectiveness. To validate the LDM and illustrate how it is used, we used simulation to test model rationality and applied the LDM to the design of system security for an e-commercial business case.},
doi = {10.1504/IJICS.2008.020607},
url = {https://www.osti.gov/biblio/974998},
journal = {International Journal of Information and Computer Security, 2(3):297-324},
number = 3,
volume = 2,
place = {United States},
year = {Wed Oct 01 00:00:00 EDT 2008},
month = {Wed Oct 01 00:00:00 EDT 2008}
}