7. Metrics and Standards

Objectives

• To contribute to and participate in relevant standardisation bodies
• To define evaluation metrics and benchmarks for security components in the INTERSECTION architecture.

Description

The following activities will be performed in this work package:

Task 7.1: Contribution to standardization (in e.g. IETF Working Groups IPFIX, PSAMP, IDWG)

A successful contribution to the IETF standardization requires besides the draft document preparation and discussion on the relevant mailing list, the continued participation of draft authors at regular IETF meetings. There are three meetings scheduled per year, out of which in general two are held in North America and a third one in another country, therefore it is expected that at least one person of the project will need to make about three travels outside the EU for participation in IETF meetings. Task 7.1 aims at contributing to standardization activities within IETF and ETSI in the area of network monitoring and measurement and in the field of network security. In particular, this task will focus on the definition of standard protocols and data models for the exchange of information on attacks in an inter-domain environment.

Task 7.2: Definition of security metrics for benchmarking and comparative evaluation

This task aims at defining security metrics that are both meaningful and useful for safety analysis of networked systems. Such metrics are desiderable since they provide criteria for a systematic comparison and evaluation of security systems and components. These metrics will allow comparison of developed tools with other open technology architectures and frameworks. Whenever possible, Activity 7.2 will take evaluation metrics from state of the art, to facilitate comparison with existing technology. It will define new evaluation metrics where needed.