Trust-terms ontology for defining security requirements and metrics

Kieran Sullivan; Jim Clarke; Barry P. Mulcahy

doi:10.1145/1842752.1842789

Trust-terms ontology for defining security requirements and metrics

Kieran Sullivan, Jim Clarke, Barry P. Mulcahy

Department of Computing and Mathematics

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

4 Citations (Scopus)

Abstract

Security and privacy, accountability and anonymity, transparency and unobservability: these terms and more are vital elements for defining the overall security requirements - -and, thus, security measurability criteria - -of systems. However, these distinct yet related concepts are often substituted for one another in our discussions on securing trustworthy systems and services. This is damaging since it leads to imprecise security and trust requirements. Consequently, this results in poorly defined metrics for evaluating system security. This paper proposes a trust-terms ontology, which maps out and defines the various components and concepts that comprise ICT security and trust. We can use this ontology tool to gain a better understanding of their trust and security requirements and, hence, to identify more precise measurability criteria.

Original language	English
Title of host publication	4th European Conference on Software Architecture
Subtitle of host publication	Doctoral Symposium, Industrial Track and Workshops, ECSA 2010 Proceedings - Companion Volume
Pages	175-180
Number of pages	6
DOIs	https://doi.org/10.1145/1842752.1842789
Publication status	Published - 2010
Event	4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010 - Copenhagen, Denmark Duration: 23 Aug 2010 → 26 Aug 2010

Publication series

Name	ACM International Conference Proceeding Series

Conference

Conference	4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010
Country/Territory	Denmark
City	Copenhagen
Period	23/08/2010 → 26/08/2010

Keywords

metrics
ontologies
privacy
requirements
security
trust

Access to Document

10.1145/1842752.1842789

Cite this

Sullivan, K., Clarke, J., & Mulcahy, B. P. (2010). Trust-terms ontology for defining security requirements and metrics. In 4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010 Proceedings - Companion Volume (pp. 175-180). (ACM International Conference Proceeding Series). https://doi.org/10.1145/1842752.1842789

@inproceedings{8778b72dab314da3af23f6b8ea62f9f9,

title = "Trust-terms ontology for defining security requirements and metrics",

abstract = "Security and privacy, accountability and anonymity, transparency and unobservability: these terms and more are vital elements for defining the overall security requirements - -and, thus, security measurability criteria - -of systems. However, these distinct yet related concepts are often substituted for one another in our discussions on securing trustworthy systems and services. This is damaging since it leads to imprecise security and trust requirements. Consequently, this results in poorly defined metrics for evaluating system security. This paper proposes a trust-terms ontology, which maps out and defines the various components and concepts that comprise ICT security and trust. We can use this ontology tool to gain a better understanding of their trust and security requirements and, hence, to identify more precise measurability criteria.",

keywords = "metrics, ontologies, privacy, requirements, security, trust",

author = "Kieran Sullivan and Jim Clarke and Mulcahy, {Barry P.}",

year = "2010",

doi = "10.1145/1842752.1842789",

language = "English",

isbn = "9781450301794",

series = "ACM International Conference Proceeding Series",

pages = "175--180",

booktitle = "4th European Conference on Software Architecture",

note = "null ; Conference date: 23-08-2010 Through 26-08-2010",

}

Sullivan, K, Clarke, J & Mulcahy, BP 2010, Trust-terms ontology for defining security requirements and metrics. in 4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010 Proceedings - Companion Volume. ACM International Conference Proceeding Series, pp. 175-180, 4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010, Copenhagen, Denmark, 23/08/2010. https://doi.org/10.1145/1842752.1842789

Trust-terms ontology for defining security requirements and metrics. / Sullivan, Kieran; Clarke, Jim; Mulcahy, Barry P.

4th European Conference on Software Architecture: Doctoral Symposium, Industrial Track and Workshops, ECSA 2010 Proceedings - Companion Volume. 2010. p. 175-180 (ACM International Conference Proceeding Series).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Trust-terms ontology for defining security requirements and metrics

AU - Sullivan, Kieran

AU - Clarke, Jim

AU - Mulcahy, Barry P.

PY - 2010

Y1 - 2010

N2 - Security and privacy, accountability and anonymity, transparency and unobservability: these terms and more are vital elements for defining the overall security requirements - -and, thus, security measurability criteria - -of systems. However, these distinct yet related concepts are often substituted for one another in our discussions on securing trustworthy systems and services. This is damaging since it leads to imprecise security and trust requirements. Consequently, this results in poorly defined metrics for evaluating system security. This paper proposes a trust-terms ontology, which maps out and defines the various components and concepts that comprise ICT security and trust. We can use this ontology tool to gain a better understanding of their trust and security requirements and, hence, to identify more precise measurability criteria.

AB - Security and privacy, accountability and anonymity, transparency and unobservability: these terms and more are vital elements for defining the overall security requirements - -and, thus, security measurability criteria - -of systems. However, these distinct yet related concepts are often substituted for one another in our discussions on securing trustworthy systems and services. This is damaging since it leads to imprecise security and trust requirements. Consequently, this results in poorly defined metrics for evaluating system security. This paper proposes a trust-terms ontology, which maps out and defines the various components and concepts that comprise ICT security and trust. We can use this ontology tool to gain a better understanding of their trust and security requirements and, hence, to identify more precise measurability criteria.

KW - metrics

KW - ontologies

KW - privacy

KW - requirements

KW - security

KW - trust

UR - http://www.scopus.com/inward/record.url?scp=78149384448&partnerID=8YFLogxK

U2 - 10.1145/1842752.1842789

DO - 10.1145/1842752.1842789

M3 - Conference contribution

AN - SCOPUS:78149384448

SN - 9781450301794

T3 - ACM International Conference Proceeding Series

SP - 175

EP - 180

BT - 4th European Conference on Software Architecture

Y2 - 23 August 2010 through 26 August 2010

ER -

Trust-terms ontology for defining security requirements and metrics

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this