Please use this identifier to cite or link to this item:

Multi-Criteria Selection of Capability-Based Cybersecurity Solutions

File Size Format  
0729.pdf 696.06 kB Adobe PDF View/Open

Item Summary

Title:Multi-Criteria Selection of Capability-Based Cybersecurity Solutions
Authors:Llanso, Thomas
McNeil, Martha
Noteboom, Cherie
Keywords:Cybersecurity and Software Assurance
Software Technology
decision-making, multi-criteria, cybersecurity, risk, capability
Date Issued:08 Jan 2019
Abstract:Given the increasing frequency and severity of cyber attacks on information systems of all kinds, there is interest in rationalized approaches for selecting the “best” set of cybersecurity mitigations. However, what is best for one target environment is not necessarily best for another. This paper examines an approach to the selection that uses a set of weighted criteria, where the security engineer sets the weights based on organizational priorities and constraints. The approach is based on a capability-based representation for defensive solutions. The paper discusses a group of artifacts that compose the approach through the lens of Design Science research and reports performance results of an instantiation artifact.
Pages/Duration:9 pages
Rights:Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections: Cybersecurity and Software Assurance

Please email if you need this content in ADA-compliant format.

This item is licensed under a Creative Commons License Creative Commons