Quality of Protection

Security Measurements and Metrics

  • Dieter Gollmann
  • Fabio Massacci
  • Artsiom Yautsiukhin
Conference proceedings

Part of the Advances in Information Security book series (ADIS, volume 23)

Table of contents

  1. Front Matter
    Pages i-xi
  2. Motivations

    1. Andrea Atzeni, Antonio Lioy
      Pages 1-12
    2. Günter Karjoth, Birgit Pfitzmann, Matthias Schunter, Michael Waidner
      Pages 13-24
  3. Measurements: Reliability vs Security

    1. Miles A. McQueen, Wayne F. Boyer, Mark A. Flynn, George A. Beitel
      Pages 49-64
    2. Davide Balzarotti, Mattia Monga, Sabrina Sicari
      Pages 65-77
    3. E. Alata, M. Dacier, Y. Deswarte, M. Kaaâniche, K. Kortchinsky, V. Nicomette et al.
      Pages 79-91
  4. Quantitative Security Models

    1. Simon N. Foley, Stefano Bistarelli, Barry O’Sullivan, John Herbert, Garret Swart
      Pages 93-105
    2. Judith E. Y. RossebeØ, Mass Soldal Lund, Knut Eilif Husa, Atle Refsdal
      Pages 107-118
    3. Valentina Casola, Antonino Mazzeo, Nicola Mazzocca, Massimiliano Rak
      Pages 119-130
  5. Metrics for Anonymity and Confidentiality

    1. Dogan Kesdogan, Lexi Pimenidis, Tobias KÖlsch
      Pages 159-171
    2. Reine Lundin, Stefan Lindskog, Anna Brunstrom, Simone Fischer-Hübner
      Pages 173-184
    3. E. Damiani, S. De Capitani di Vimercati, S. Foresti, P. Samarati, M. Viviani
      Pages 185-195
  6. Back Matter
    Pages 197-197

About these proceedings


Information security in the business setting has matured in the last few decades. Standards, such as IS017799, the Common Criteria’s, and a number of industry and academic certifications and risk analysis methodologies, have raised the bar on what is considered good security solution, from a business perspective. Yet, the evaluation of security solutions has largely a qualitative flavor. Notions such as Security Metrics, Quality of Protection (QoP) or Protection Level Agreement (PLA) have only surfaced in the literature.

Quality of Protection: Security Measurements and Metrics is an edited volume based on the Quality of Protection Workshop at ESORICS 2005, the flagship European Symposium on Research in Computer Security. This book discusses how security research can progress towards a notion of quality of protection in security, comparable to the notion of quality of service in networking and software measurements and metrics, in empirical software engineering.

Quality of Protection: Security Measurements and Metrics is designed for a professional audience, composed of researchers and practitioners in industry. This book is also suitable for graduate-level students in computer science and telecommunications.



Information Information Security Measurements Metrics Monitor Protection Quality modeling object oriented design security

Editors and affiliations

  • Dieter Gollmann
    • 1
  • Fabio Massacci
    • 2
  • Artsiom Yautsiukhin
    • 2
  1. 1.Institute Security in Distributed ApplicationsTU Hamburg-HarburgHamburgGermany
  2. 2.Dipartimento Informatica e Telecomunicazioni (DIT)University of TrentoTrentoItaly

Bibliographic information

Industry Sectors
Finance, Business & Banking
IT & Software