Simple record

dc.contributor.authorGaritano, Iñaki
dc.contributor.otherLongueira-Romerc, Angel
dc.contributor.otherIglesias, Rosa
dc.contributor.otherGonzález, David
dc.date.accessioned2022-05-03T13:06:35Z
dc.date.available2022-05-03T13:06:35Z
dc.date.issued2020
dc.identifier.isbn978-1-7281-4964-6en
dc.identifier.issn2378-363Xen
dc.identifier.otherhttps://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=165008en
dc.identifier.urihttps://hdl.handle.net/20.500.11984/5560
dc.description.abstractEmbedded Systems (ES) development has been historically focused on functionality rather than security, and today it still applies in many sectors and applications. However, there is an increasing number of security threats over ES, and a successful attack could have economical, physical or even human consequences, since many of them are used to control critical applications. A standardized and general accepted security testing framework is needed to provide guidance, common reporting forms and the possibility to compare the results along the time. This can be achieved by introducing security metrics into the evaluation or assessment process. If carefully designed and chosen, metrics could provide a quantitative, repeatable and reproducible value that would reflect the level of security protection of the ES. This paper analyzes the features that a good security metric should exhibit, introduces a taxonomy for classifying them, and finally, it carries out a literature survey on security metrics for the security evaluation of ES. In this review, more than 500 metrics were collected and analyzed. Then, they were reduced to 169 metrics that have the potential to be applied to ES security evaluation. As expected, the 77.5% of them is related exclusively to software, and only the 0.6% of them addresses exclusively hardware security. This work aims to lay the foundations for constructing a security evaluation methodology that uses metrics so as to quantify the security level of an ES.es
dc.language.isoengen
dc.publisherIEEEen
dc.rights© 2020 IEEEen
dc.subjectMeasurementen
dc.subjectEmbedded Systemsen
dc.subjectConferencesen
dc.subjectTaxonomyen
dc.subjectSoftwareen
dc.subjectHardwareen
dc.subjectsecurityen
dc.titleHow to Quantify the Security Level of Embedded Systems? A Taxonomy of Security Metricsen
dcterms.accessRightshttp://purl.org/coar/access_right/c_abf2en
dcterms.sourceIEEE International Conference on Industrial Informatics (INDIN).en
local.contributor.groupAnálisis de datos y ciberseguridades
local.description.peerreviewedtrueen
local.description.publicationfirstpage153en
local.description.publicationlastpage158en
local.identifier.doihttps://doi.org/10.1109/INDIN45582.2020.9442219en
local.contributor.otherinstitutionhttps://ror.org/03hp1m080es
local.source.detailsVol. 2020-July. N. artículo. 9442219. Pp. 153-158, 2020en
oaire.format.mimetypeapplication/pdf
oaire.file$DSPACE\assetstore
oaire.resourceTypehttp://purl.org/coar/resource_type/c_c94fen
oaire.versionhttp://purl.org/coar/version/c_ab4af688f83e57aaen


Files in this item

Thumbnail

This item appears in the following Collection(s)

Simple record