Validation of the Enhanced Model for Efficient Development of Security Audit Criteria
Abstract:
Cyberattacks have grown in importance to become a matter of national security. Security criteria are important tools for defensive capabilities of critical communications and information systems. An enhanced model for efficient development of security audit criteria has been proposed. This paper provides evidence in support of the validation of the proposed model. The model is validated through case study observations from two criteria development projects that utilised the model during criteria development. The results indicate that the model is useful for criteria development and provides efficiency to such processes. The results also suggest minor improvements for development of the model.
AUTHORS
Faculty of Information and Communication Sciences Tampere University
Tampere, Finland
National Cyber Security Centre Finland
Finnish Transport and Communications Agency
Helsinki, Finland
Tomi Kelo is working as a Chief Specialist at the Finnish National Cyber Security Centre (NCSC-FI), focusing mainly on information assurance and cybersecurity matters. As a hobby, he is also preparing his doctoral thesis at the Tampere University
Department of Computer Science and Engineering University of Oulu
Oulu, Finland
National Cyber Security Centre Finland Finnish Communications Regulatory Authority
Helsinki, Finland
Juhani Eronen is a Chief Specialist at the Finnish National Cyber Security Centre (NCSC-FI). For over 25 years he has been intimately involved in research, discovery, and coordination of security vulnerabilities and in incident response. His responsibilities in NCSC-FI include the automation of the nationwide handling of security incidents as well as information assurance.
Published In
Journal of Information Warfare
The definitive publication for the best and latest research and analysis on information warfare, information operations, and cyber crime. Available in traditional hard copy or online.
Quick Links
Archive
