Abstract
To the casual, yet interested, reader, one of the most striking properties of the Trusted Computer System Evaluation Criteria [1] and its international successors is that none of these documents contain any attempt to relate their evaluation levels to a measure of how much effort must be expended to break into a system. [2] As a consequence, it’s impossible to evaluate rationally the marginal benefit of spending the extra money necessary to obtain a higher rating than a lower one.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
National Computer Security Center, Trusted Computer System Evaluation Criteria, CSC-STD-001-83, Ft. Meade, MD, 1983.
J. McLean, “New Paradigms for High-Assurance Systems,” Proc. of the New Paradigms Workshop, IEEE Press, forthcoming.
D. Denning, Cryptography and Data Security, Addison-Wesley, Reading, MA, 1982.
J. McLean, “Security Models and Information Flow,” Proc. 1990 IEEE CS Symposium on Research in Security and Privacy, IEEE Press, 1990.
J. Gray, “Toward a Mathematical Foundation of Information Flow Security,” Journal of Computer Security, Vol. 1, no. 3-4.
J. Millen, “Covert Channel Capacity,” Proc. 1987 IEEE CS Symposium on Research in Security and Privacy, IEEE Press, 1987.
I. Moskowitz and A. Miller, “The Channel Capacity of a Certain Noisy Timing Channel,” IEEE Transactions on Information Theory, Vol. 38, no. 4, 1992.
J. McLean, “Models of Confidentiality: Past, Present, and Future,” Proc. Computer Security Foundations Workshop VI, IEEE Press, 1993.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1995 Springer-Verlag/Wien
About this paper
Cite this paper
McLean, J. (1995). Quantitative Measures of Security. In: Cristian, F., Le Lann, G., Lunt, T. (eds) Dependable Computing for Critical Applications 4. Dependable Computing and Fault-Tolerant Systems, vol 9. Springer, Vienna. https://doi.org/10.1007/978-3-7091-9396-9_18
Download citation
DOI: https://doi.org/10.1007/978-3-7091-9396-9_18
Publisher Name: Springer, Vienna
Print ISBN: 978-3-7091-9398-3
Online ISBN: 978-3-7091-9396-9
eBook Packages: Springer Book Archive