ANALYSIS OF COLLABORATIVE SYSTEMS SECURITY USING A THREE-CRITERIA APPROACH: PROTECTION, PRICE AND PERFORMANCE
Babe?-Bolyai University of Cluj-Napoca, Economic Informatics Department (ROMANIA)
About this paper:
Appears in:
INTED2009 Proceedings
Publication year: 2009
Pages: 3400-3409
ISBN: 978-84-612-7578-6
ISSN: 2340-1079
Conference name: 3rd International Technology, Education and Development Conference
Dates: 9-11 March, 2009
Location: Valencia, Spain
Abstract:
Nowadays, the security of collaborative systems is a critical topic. The main issue here is to ensure a balance between the performances of a collaborative system, the protection offered and the total cost of ownership (price to be paid). Traditionally, in these cases a cost-benefit analysis is used.
The objective of this paper is to extend the traditional method used for analyzing the impact of the implementation of security measures in a collaborative environment, by using an approach based on three criteria: protection, price and performance.
In terms of performance, the operation of a collaborative environment (such as LAN) is simulated, using OPNET IT Guru Academic Edition software, in order to analyze how the implementation of security measures affects the performance of collaborative systems. The performance of collaborative environment will be analyzed in three different scenarios: when no security measures are implemented, when security measures are primarily reactive and when security measures are primarily proactive.
In terms of costs, it is calculated the possible loss of the organization in the worst-case situation for each of the three scenarios presented above.
The security measures are analyzed in two scenarios: first, the measures are preponderant proactive and second, the measures are preponderant reactive.
Finally, conclusions on the impact of the implementation of security measures in a collaborative environment are formulated, by taking into account the criteria presented above: protection offered, price (cost) and performance.
Keywords:
security, risk evaluation, annual loss expectancy, opnet it guru academic edition.