skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: A Layered Decision Model for Cost-Effective System Security

Abstract

System security involves decisions in at least three areas: identification of well-defined security policies, selection of cost-effective defence strategies, and implementation of real-time defence tactics. Although choices made in each of these areas affect the others, existing decision models typically handle these three decision areas in isolation. There is no comprehensive tool that can integrate them to provide a single efficient model for safeguarding a network. In addition, there is no clear way to determine which particular combinations of defence decisions result in cost-effective solutions. To address these problems, this paper introduces a Layered Decision Model (LDM) for use in deciding how to address defence decisions based on their cost-effectiveness. To validate the LDM and illustrate how it is used, we used simulation to test model rationality and applied the LDM to the design of system security for an e-commercial business case.

Authors:
; ; ; ; ;
Publication Date:
Research Org.:
Pacific Northwest National Lab. (PNNL), Richland, WA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
974998
Report Number(s):
PNNL-SA-61549
TRN: US201007%%935
DOE Contract Number:  
AC05-76RL01830
Resource Type:
Journal Article
Journal Name:
International Journal of Information and Computer Security, 2(3):297-324
Additional Journal Information:
Journal Volume: 2; Journal Issue: 3
Country of Publication:
United States
Language:
English
Subject:
99 GENERAL AND MISCELLANEOUS//MATHEMATICS, COMPUTING, AND INFORMATION SCIENCE; BUSINESS; DESIGN; IMPLEMENTATION; SECURITY; SIMULATION; layered decision model; LDM; system security; cost-benefit analysis; model validation e-commerce

Citation Formats

Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, and Frincke, Deborah A. A Layered Decision Model for Cost-Effective System Security. United States: N. p., 2008. Web. doi:10.1504/IJICS.2008.020607.
Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, & Frincke, Deborah A. A Layered Decision Model for Cost-Effective System Security. United States. https://doi.org/10.1504/IJICS.2008.020607
Wei, Huaqiang, Alves-Foss, James, Soule, Terry, Pforsich, Hugh, Zhang, Du, and Frincke, Deborah A. 2008. "A Layered Decision Model for Cost-Effective System Security". United States. https://doi.org/10.1504/IJICS.2008.020607.
@article{osti_974998,
title = {A Layered Decision Model for Cost-Effective System Security},
author = {Wei, Huaqiang and Alves-Foss, James and Soule, Terry and Pforsich, Hugh and Zhang, Du and Frincke, Deborah A},
abstractNote = {System security involves decisions in at least three areas: identification of well-defined security policies, selection of cost-effective defence strategies, and implementation of real-time defence tactics. Although choices made in each of these areas affect the others, existing decision models typically handle these three decision areas in isolation. There is no comprehensive tool that can integrate them to provide a single efficient model for safeguarding a network. In addition, there is no clear way to determine which particular combinations of defence decisions result in cost-effective solutions. To address these problems, this paper introduces a Layered Decision Model (LDM) for use in deciding how to address defence decisions based on their cost-effectiveness. To validate the LDM and illustrate how it is used, we used simulation to test model rationality and applied the LDM to the design of system security for an e-commercial business case.},
doi = {10.1504/IJICS.2008.020607},
url = {https://www.osti.gov/biblio/974998}, journal = {International Journal of Information and Computer Security, 2(3):297-324},
number = 3,
volume = 2,
place = {United States},
year = {Wed Oct 01 00:00:00 EDT 2008},
month = {Wed Oct 01 00:00:00 EDT 2008}
}