Abstract
The navigation metaphor for cybersecurity merges security architecture models and security economics. By identifying the most efficient routes for gaining access to assets from an attacker's viewpoint, an organization can optimize its defenses along these routes. The well-understood concept of navigation makes it easier to motivate and explain security investment to a wide audience, encouraging strategic security decisions.
Original language | English |
---|---|
Journal | I E E E Security & Privacy Magazine |
Volume | 14 |
Issue number | 3 |
Pages (from-to) | 14-21 |
Number of pages | 8 |
ISSN | 1540-7993 |
DOIs | |
Publication status | Published - 2016 |
Keywords
- Electrical and Electronic Engineering
- Computer Networks and Communications
- Law
- attack navigators
- attacker profiles
- cyberattacks
- e-commerce
- hackers
- Internet/Web technologies
- navigation
- security
- security economics
- security models
- visualization
- COMPUTER
- software architecture
- decision making
- security of data
- strategic security decision
- navigation metaphor
- cybersecurity
- security architecture model
- access control
- Biological system modeling
- Economics
- Computer security
- Navigation
- Electonic commerce
- Web servuces
- Modeling
- Data security
- Software engineering techniques