Unit 12: Security Metrics and Privacy




                                                                                                Notes
                  Figure  12.2: Mapping  of  Measurable  Security Elements  to Metrics  Categories

















































          At the time of recommending its categorization, it has been defined as a more inclusive hierarchy
          of metrics categories and subcategories, nor had it occupied its  proposed classification. The
          researchers had, though, recognized an extensive list of possible sources for such metrics, and
          categorized these inside the first three categories of their taxonomy; they had also surveyed and
          evaluated the  potential usefulness of the metrics in  each source for dimensioning  security
          attributes of process control systems.
          In  performing this survey, the  researchers in  fact implied  a more absolute classification  of
          applicable security  metrics than  is designated  by  their  formally  projected  classification.
          Table 12.1 illustrates that implied categorization of security metrics.















                                           LOVELY PROFESSIONAL UNIVERSITY                                   169