You are here

A Toolkit for Scalable and Automatic Security Analysis Using Security Metrics

Award Information
Agency: Department of Commerce
Branch: National Institute of Standards and Technology
Contract: N/A
Agency Tracking Number: 09-913-147
Amount: $90,000.00
Phase: Phase I
Program: SBIR
Solicitation Topic Code: N/A
Solicitation Number: N/A
Solicitation Year: N/A
Award Year: 2009
Award Start Date (Proposal Award Date): N/A
Award End Date (Contract End Date): N/A
Small Business Information
15400 Calhoun Drive, Suite 400, Rockville, MD, 20855
HUBZone Owned: N
Woman Owned: N
Socially and Economically Disadvantaged: N
Principal Investigator
 Kun Sun
 (301) 294-4762
Business Contact
Phone: () -
Research Institution
Our society has become increasingly dependent on the reliability and proper functioning of a vast number of interconnected information systems. To improve the security of these systems, it is necessary to measure the amount of security provided by different systems and configuration since one cannot improve what cannot be measured. In this proposal, Intelligent Automation Inc. (IAI) and its consultant, Professor Sushil Jajodia from George Mason University, propose to develop a systematic toolkit including security metrics collection, security metrics integration, and data visualization components for scalable and automatic security analysis using security metrics. We will develop a security analysis toolkit using a bottom-up approach.. We first define which security processes, products, services, etc. are in place that can be or already are measured, then consider which meaningful metrics could be derived from those measurements, and finally assess how well those metrics link to objectives for the overall security program.

* Information listed above is at the time of submission. *

US Flag An Official Website of the United States Government