Deployment of a security assurance monitoring framework for telecommunication service infrastructures on a VoIP service

Proceedings of New Technologies, Mobility and Security Conference and Workshops, NTMS 2008

Volumn , Issue , 2008, Pages

  Ouedraogo, Moussa ^a,b   Khadraoui, Djamel ^a   De Rémont, Benoît ^a   Dubois, Eric ^a,b   Mouratidis, Haralambos ^b  

^a LUXEMBOURG INSTITUTE OF SCIENCE AND TECHNOLOGY   (Luxembourg)

^b UNIVERSITY OF EAST LONDON   (United Kingdom)

Author keywords

Aggregation; Measurement; Metrics specification; Probes; Security assurance; Telecommunication infrastructures; VoIP service

Indexed keywords

AGGREGATION; METRICS SPECIFICATION; SECURITY ASSURANCE; TELECOMMUNICATION INFRASTRUCTURES; VOIP SERVICE;

INTERNET TELEPHONY; NETWORK MANAGEMENT; RISK MANAGEMENT; SPECIFICATIONS; TECHNICAL PRESENTATIONS; TELECOMMUNICATION; TELECOMMUNICATION NETWORKS; TELECOMMUNICATION SYSTEMS; TELECOMMUNICATION TRAFFIC; TELEPHONE SYSTEMS; VOICE/DATA COMMUNICATION SYSTEMS;

TELECOMMUNICATION SERVICES;

EID: 58049139930     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/NTMS.2008.ECP.38     Document Type: Conference Paper

References (24)

1. Bulut E, Khadraoui D, Marquet B (2007), Multi-Agent based security assurance monitoring system for telecommunication infrastructures, In proceedings to the Communication, Network, and Information Security conference, Berkely/California, September 2007.
2. Celtic BUGYO project, http://projects.celtic-initiative.org/bugyo , march 2008
3. CC, Common Criteria for information Technology, part 1-3, version 3.1, September 2006.
4. Vaughn RB, Henning R, Siraj A (2002) Information Assurance Measures and Metrics - State of Practice and Proposed Taxonomy, in Proceedings of the IEEE/HICSS'03, Hawaii, Jan. 2002
5. Arca Systems, Inc. (1995) Using an Assurance Framework to Reason about Security Evaluation Methods, White Paper, December 1995
6. Zuccato A, Marquet B, Papillon S, Alden M (2002) Service oriented modeling of communication infrastructure for assurance, in Proceedings of the 2002 IEEE Workshop on Information Assurance and Security, West Point/NY, June 2002
7. ISO standard 15939, Software Measurement Process.
8. Alberts C, Dorofee A (2001) Octave Criteria - Version 2.0, TECHNICAL REPORT, CMU/SEI-2001-TR-016, Software Engineering Institute, 2001
9. MEHARI (2004), CLUSIF, Version 3, Octobre 2004. http://www.clusif.asso. fr/
10. Expression des Besoins et Identification des Objectifs de Securite (EBIOS)(2004), Direction Centrale de la Securite des Systemes d'Information (France), February 2004. http://www.ssi.gouv.fr/
11. CRAMM (CCTA Risk Analysis and Management Method)(2003) User Guide version 5.0, Insight Consulting - SIEMENS, September 2003.
12. Vraalsen F, Mahler T, Lund M.S, Hogganvik I, den Braber F and Stølen K( 2007) "Assessing Enterprise Risk Level: The CORAS Approach," in Advances in Enterprise Information Technology Security, Khadraoui D and Herrmann F, Idea Group Reference, March 2007. ISBN : 978-1599040905
13. Jürjens J, Secure Systems Development with UML (2005), Springer, Berlin 2005
14. Mouratidis H., Giorgini P., (2007) "Secure Tropos: A Security-Oriented Extension of the Tropos methodology" International Journal of Software Engineering and Knowledge Engineering (IJSEKE) 17(2) pp. 285-309, World Scientific.
15. CEM, Common Criteria for Information Technology, Evaluation Methodology, CCMB-2006-09-004, version 3.1, Revision 1, September 2006
16. Seddigh N., Pieda P., Matrawy A., Nandy B., Lambadaris I.& Hatfield A.(2004) Current Trends and Advances in Information Assurance Metrics. PST 2004: 197-205
17. th HICSS 2003. IEEE computer society.
18. Swanson M.(2001) security Metrics guide for Information Technology System, National Institute of Standards and Technology Special publication#800-26.
19. Swanson M., Nadya B., Sabato J, hash and Graffo L. (2003) Security Metrics Guide for Information Technology Systems, National Institute of Standards and technology Special publication #800-55
20. Pham N., Riguidel M.(2007) Security Assurance Aggregation for IT Infrastructures, Second International Conference on Systems and Networks Communications (ICSNC 2007).
21. Wooldridge M. (2007) An Introduction to Multi-Agent Systems, John Wiley & Sons Ltd, ISBN 0-471-49691-X, 2002.
22. JADE, http://jade.tilab.com, march 2008
23. Sklavos N. & Zhang X. (2007) Handbook of Wireless Security: From Specifications to Implementations, CRC-Press, A Taylor & Francis Group, 2007
24. Samhain, http://www.la-samhain.de/samhain, march 2008