Skip to main content
SpringerLink
Log in

Measurement of Operational Security

  • Conference paper
Dependable Computing for Critical Applications 4

Part of the book series: Dependable Computing and Fault-Tolerant Systems ((DEPENDABLECOMP,volume 9))

  • 88 Accesses

Abstract

For all aspects of dependability, users want to know what to expect of actual system behaviour in operation. In the case of reliability, it is now possible to obtain such operational measures for systems even in the presence of design faults (e.g., software faults). Similarly, a measure of the security of a system should capture quantitatively the intuitive notion of ‘the ability of the system to resist attack’. That is, it should be operational, reflecting the degree to which the system can be expected to remain free of security breaches under particular conditions of operation (including attack). So-called ‘quality indicators’ (e.g., properties of development process, structural properties of the product, etc.) do not provide such operational measures. In particular, current security levels at best merely reflect the extensiveness of safeguards introduced during the design and development of a system. Whilst we might expect a system developed to a higher level than another to exhibit ‘more secure behaviour’ in operation, this cannot be guaranteed; more particularly, we cannot infer from knowledge of such a level what the actual security behaviour will be.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. B. Littlewood, S. Brocklehurst, N.E. Fenton, P. Mellor, S. Page, D. Wright, J.E. Dobson, J.A. McDermid and D. Gollmann, “Towards operational measures of computer security,” Journal of Computer Security, (to appear).

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Centre for Software Reliability, City University, London, EC1V 0HB, UK

    Bev Littlewood

Authors
  1. Bev Littlewood
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. University of California, La Jolla, CA, 92093-0114, USA

    Flaviu Cristian

  2. INRIA, F-78150, Le Chesnay, France

    Gerard Le Lann (Research Director) (Research Director)

  3. ARPA/CSTO, Arlington, VA, 22203, USA

    Teresa Lunt (Program Manager) (Program Manager)

Rights and permissions

Reprints and permissions

Copyright information

© 1995 Springer-Verlag/Wien

About this paper

Cite this paper

Littlewood, B. (1995). Measurement of Operational Security. In: Cristian, F., Le Lann, G., Lunt, T. (eds) Dependable Computing for Critical Applications 4. Dependable Computing and Fault-Tolerant Systems, vol 9. Springer, Vienna. https://doi.org/10.1007/978-3-7091-9396-9_17

Download citation

  • DOI: https://doi.org/10.1007/978-3-7091-9396-9_17

  • Publisher Name: Springer, Vienna

  • Print ISBN: 978-3-7091-9398-3

  • Online ISBN: 978-3-7091-9396-9

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation