 |
With the above architecture, the system reports its findings by computing the average compliance rate over a period of time as well as the overall compliance rate at any given time frame as follows.
Compliance Rate (CR) = (Xt-1 – Xt ) / Xt-1 where Xt is no of
errors observed w.r.t security assurance policy at time t and Xt1 is at time t-1. CR represents the observed rate of change w.r.t
identified non-compliance factors of security policy. The CR
represents the compliance rate against the security policy
pertaining to the most recent time window. The time window
represents the gap between two successive vulnerability
analysis attempts. The time window is a configurable parameter
that defines how frequently the security log and other critical
information have to be collected from the critical resources to
be monitored.
Average Compliance Rate = 1/𝑛 ¢²𝐶𝑅𝑖 where ¡®CRi¡¯ is the
value of the compliance rate at a given instant of a time
window and ¡®n¡¯ is the no of such time windows chosen in a
given period (e.g., in the last 24 hours, in the last 30 days etc).
Severity Level is one of ¡®Critical¡¯, ¡®High¡¯, ¡®Medium¡¯, ¡®Low¡¯,
¡®None¡¯ labels which is decided based on Base Score. Base score computation is shown in next slide.
|
IEEE/ICACT20230046 Slide.14
[Big Slide]
[YouTube]