Abstract—Adequate information security effectiveness during system operation is the ultimate goal of all security solutions for software-intensive systems. Sufficient and credible measurement of security effectiveness supports informed decision-making in engineering and management practices throughout the system development life cycle. Although detail-level security metrics can be developed for special purposes, their meaningfulness suffers if their relationship to the overall security effectiveness objectives cannot be traced. This paper analyzes the factors contributing to security effectiveness of software-intensive systems.
Index Terms—Security, security metrics, security effectiveness, software-intensive systems.
R. M. Savola is with VTT Technical Research Centre of Finland, Kaitoväylä 1, 90570 Oulu, Finland (e-mail: reijo.savola@vtt.fi).
[PDF]
Cite: Reijo M. Savola, "Towards Measurement of Security Effectiveness Enabling Factors in Software Intensive Systems," Lecture Notes on Software Engineering vol. 2, no. 1, pp. 104-109, 2014.
![[Click]](http://www.lnse.org/img/lnse_v4n1-n3_ei%28inspec%29_indexscreenshot.jpg){kind=link}
![[Click]](http://www.lnse.org/img/lnse_v3n4_ei%28inspec%29_indexscreenshot.jpg){kind=link}