1.
Brocklehurst, Sarah, et al.
(författare)
On measurement of operational security
1994
Ingår i: IEEE Aerospace and Electronic Systems Magazine. - : Institute of Electrical and Electronics Engineers (IEEE). - 0885-8985. ; 9:10, s. 7-16
Tidskriftsartikel (refereegranskat) abstract
Ideally, a measure of the security of a system should capture quantitatively the intuitive notion of "the ability of the system to resist attack." That is, it should be operational, reflecting the degree to which the system can be expected to remain free of security breaches under particular conditions of operation (including attack). Instead, current security levels at best merely reflect the extensiveness of safeguards introduced during the design and development of a system. Whilst we might expect a system developed to a higher level than another to exhibit "more secure behavior" in operation, this cannot be guaranteed; more particularly, we cannot infer what the actual security behavior will be from knowledge of such a level. In the paper we discuss similarities between reliability and security with the intention of working toward measures of "operational security" similar to those that we have for reliability of systems. Very informally, these measures could involve expressions such as the rate of occurrence of security breaches, or the probability that a specified "mission" can be accomplished without a security breach. This new approach is based on the analogy between system failure and security breach, but it raises several issues which invite empirical investigation. We briefly describe a pilot experiment that we have conducted to judge the feasibility of collecting data to examine these issues.
2.
3.
Jonsson, Erland, 1946, et al.
(författare)
On the Integration of Security and Dependability in Computer Systems
1992
Ingår i: IASTED International Conference on Reliability, Quality Control and Risk Assessment Washington DC, USA, 1992, ISBN 0-88986-171-4. ; , s. 93-97
Konferensbidrag (refereegranskat) abstract
Historically the trustworthiness of a computer system was characterized by its reliability and availability. Later on safety was integrated into what is now termed dependability. System security was originally a concept that described the protection of information from intentional and hostile interaction. It has now been suggested that security should be treated as a dependability attribute, parallel to reliability, availability and safety, but the implications of this integration has not yet been fully realized. This paper presents a novel approach to security, intended to facilitate and improve this integration. This is accomplished by taking a dependability viewpoint on traditional security and interpreting it in terms of system behaviour and fault prevention. A modified security concept, comprising only fault prevention characteristics and a new behaviouristic concept, privacy, are defined. The outcome of this interpretation will influence the integration of the other three dependability attributes.
4.
Olovsson, Tomas, 1959
(författare)
A Structured Approach to Computer Security
1992
Rapport (övrigt vetenskapligt/konstnärligt) abstract
Security and dependability are two closely connected areas. Recently, some attempts have been made to integrate the two concepts by integrating security into the more general topic of dependability. This paper describes security concepts and gives a survey of security terminology. It also establishes a taxonomy reflecting concepts within the security area which enables the integration of security and dependability. Special concern is given to the problems which inevitably arise from the integration, for example, a somewhat different definition of security is introduced. This paper does not pretend to cover every single mechanism found in security, but is rather an attempt to create a taxonomy for security analysis, estimation and design; a taxonomy that should be useful for further research within this area.
5.
6.
7.
8.
9.
10.
Asproth, Viveca, et al.
(författare)
GIS-application for visualization of streams
1994
Ingår i: Computers, Environment and Urban Systems. - : Elsevier. - 0198-9715 .- 1873-7587. ; 18:2, s. 103-109
Tidskriftsartikel (refereegranskat) abstract
Up to now, GIS systems have been used to produce maps. When using these maps, for example, to look at a road section, you are limited to one map-sheet at a time with a specific scale. A common application, for example, in communities and electricity companies, is to include networks such as water pipes, sewage systems, and electric mains. As the lines cross map-sheet borders, it has been necessary to put the map-sheets together. It is useful for communities to have up-to-date and accurate information about water pipes, to be able to locate leaks and to know where to cut off the lines and to know which consumers are affected, when repairing. In the future, GIS systems could also be used as decision and planning support. To be able to use GIS systems for this purpose, it is necessary to improve techniques for visualization of streams (direction and strength) over time. This paper describes a project that aims to develop and evaluate user interfaces for visualization of all kinds of streams and to improve and evaluate methods and CASE tools for development of GIS applications.
