Title: Why, what and how to measure and improve the security of networks (a snapshot of the current situation of security metrics and the way forward)

Authors: Naveen Bindra; Manu Sood

Addresses: Himachal Pradesh University, Shimla, 171005, India ' Himachal Pradesh University, Shimla, 171005, India

Abstract: Networks in today's scenario are vulnerable to many threats. Cyber-criminals exploit the existing vulnerabilities of the networks to their advantage. The answers to queries like how susceptible the networks are, what security solutions are required may lie embedded in security metrics. An organisation can enhance the security of its IT infrastructure only after assessment and evaluation of the present scenario. SDN's architecture with centralised control and availability of active programming interfaces makes it an ideal choice to devise novel security metrics. The challenges in finding data sources and defining parameters for metrics formulation have motivated the authors to analyse the existing work and find gaps. Our work is unique and different from other studies in the sense it not only critically analysed the existing work but also propose much-needed ingredients of security metrics. The current work suggests a new framework to design simple, quantifiable, practical and customised security metrics for networks.

Keywords: security metrics; vulnerabilities; network threats; DDoS detection; DDoS mitigation; SDN security.

DOI: 10.1504/IJSN.2019.101415

International Journal of Security and Networks, 2019 Vol.14 No.3, pp.158 - 166

Received: 07 Feb 2019
Accepted: 07 Feb 2019
Published online: 07 Aug 2019 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article