The REM Framework for Security Evaluation

March 04-March 07

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ARES.2008.95

2008 Third International Conference o ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Flora Amato Articles by Valentina Casola Articles by Antonino Mazzeo Articles by Valeria Vittorini

	ASCII Text	x
	Flora Amato, Valentina Casola, Antonino Mazzeo, Valeria Vittorini, "The REM Framework for Security Evaluation," Availability, Reliability and Security, International Conference on, pp. 1097-1103, 2008 Third International Conference on Availability, Reliability and Security, 2008.

	BibTex	x
	@article{ 10.1109/ARES.2008.95, author = {Flora Amato and Valentina Casola and Antonino Mazzeo and Valeria Vittorini}, title = {The REM Framework for Security Evaluation}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3102-1}, pages = {1097-1103}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2008.95}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - The REM Framework for Security Evaluation SN - 978-0-7695-3102-1 SP1097 EP1103 A1 - Flora Amato, A1 - Valentina Casola, A1 - Antonino Mazzeo, A1 - Valeria Vittorini, PY - 2008 KW - null VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

A common approach to formally describe security mechanisms is the definition of proper policies. In many contexts, a system could be considered secure and trustworthy if the policy enforced by its security administrator is trustworthy as well; within such contexts it is possible to evaluate the system security by evaluating its policy. In a previous paper we have proposed a policy-based methodology, the Reference Evaluation Methodology (REM for short), to define and evaluate the security level that a system is able to provide. In this paper we illustrate the implementation of the REM framework to automatically evaluate the security level provided by a system and we discuss a real case study on the evaluation of the Certificate Authorities involved in the EUGridPMA project.

Citation:

Flora Amato, Valentina Casola, Antonino Mazzeo, Valeria Vittorini, "The REM Framework for Security Evaluation," ares, pp.1097-1103, 2008 Third International Conference on Availability, Reliability and Security, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.