Home // IARIA Congress 2024, The 2024 IARIA Annual Congress on Frontiers in Science, Technology, Services, and Applications // View article

Using Security Metrics to Improve Cyber-Resilience

Authors:
Tobias Eggendorfer
Katja Andresen

Keywords: Security Metrics; Quality Metrics; Software Security; Software Quality, Cyber-Security; Cyber-Resillience.

Abstract:
Not only critical infrastructure but also everyday interaction in a society relies heavily on secure IT systems. Examples of patients dying due to hospitals unable to admit them because of a ransomware incident indicate a low level of cyber-resilience. To increase cyber-resilience, suggested measures range from anti-malware via backups and redundancy to regular security updates. While following these guidelines, there is an intensive discussion which systems provides the best security. There is no answer -- yet. IT security lacks a reliable system to measure security in order to compare systems and make a qualified decision. This paper discusses current research in security metrics and why it is important to provide a security metric to improve cyber-resilience. The authors discuss the advantages, the state of the art and future research needed in order to improve cyber-resillience with security metrics.

Pages: 152 to 157

Copyright: Copyright (c) IARIA, 2024

Publication date: June 30, 2024

Published in: conference

ISBN: 978-1-68558-180-0

Location: Porto, Portugal

Dates: from June 30, 2024 to July 4, 2024