| ¡¡ | Chinese Journal of Computers Full Text |
| Title | Research on Quality of Protection in Networks |
| Authors | LIN Chuang XIAO Yan-Ping WANG Yuan-Zhuo ZENG Rong-Fei |
| Address | (Department of Computer Science and Technology, Tsinghua University, Beijing 100084) |
| Year | 2008 |
| Issue | No.10(1667¡ª1678) |
| Abstract & Background | Abstract Computer Network security is more and more important, it is urgent to develop a suite of measurable and quantitative metrics to evaluate quality of security protection. As a new concept in the field of network security, QoP(Quality of Protection) can provide different levels security assurance for different users and traffic and meet the requirement of security in increasingly complicated network environments, and is focused at home and aboard. In this paper, all kinds of meaning of QoP in the literature are discussed, in refer to the concepts of QoS, the definition of QoP and metrics are developed and analyzed from the user and system view. Then the state of art of QoP evaluation modeling, architectures and implementing mechanism are analyzed and classified. Finally some concluding remarks on new and challenging directions for future and potential research of QoP are discussed. Keywords quality of protection; security; evaluation metrics; evaluation modeling; quality of service Background This research is partly supported by the National Basic Research Program of China (973 Program) under grant No.2006CB708301, Scientific and technological innovation Nurture funds major projects of MOE, P.R.C Nos.707005, 60218003, the National Natural Science Foundation of China under grant Nos.90718040,60673187,60872055,60803123, Microsoft-Tsinghua collaborated lab funding, and Nokia Graduate Student Research and Innovation Funding. In the last few years, as a new concept in the field of network security, Quality of Protection (QoP) can provide different levels security assurance for different users and traffic and has been focused in the world broadly. Although numerous standards, industrial certifications, and risk analysis methodologies have been advanced in security field, it still lacks the strong, quantitative, measurement-based assurance that we find in other fields such as QoS and Software Engineering. How to quantify QoP is a more and more important problem in the world. The authors¡¯ main objectives are to provide quantitative methodology and techniques for quantifying network QoP. In this paper, the authors give the definition of QoP and evaluation metrics. Also, they introduce the status and evolvement in the study of evaluation techniques£¬ architecture and implement mechanism of QoP. Finally, they provide a number of directions for potential future research in the QoP study. |