Multi-Criteria Selection of Capability-Based Cybersecurity Solutions

Authors

Thomas H. Llansó, Dakota State University
Martha Wagner McNeil, Dakota State University
Cherie Noteboom, Dakota State UniversityFollow

Document Type

Article

Publication Date

1-8-2019

Abstract

Given the increasing frequency and severity of cyber attacks on information systems of all kinds, there is interest in rationalized approaches for selecting the “best” set of cybersecurity mitigations. However, what is best for one target environment is not necessarily best for another. This paper examines an approach to the selection that uses a set of weighted criteria, where the security engineer sets the weights based on organizational priorities and constraints. The approach is based on a capability-based representation for defensive solutions. The paper discusses a group of artifacts that compose the approach through the lens of Design Science research and reports performance results of an instantiation artifact.

Recommended Citation

Llansó, Thomas H.; McNeil, Martha Wagner; and Noteboom, Cherie, "Multi-Criteria Selection of Capability-Based Cybersecurity Solutions" (2019). Research & Publications. 26.
https://scholar.dsu.edu/bispapers/26