InhaltsangabeMotivations.- Why to adopt a security metric? A brief survey.- Service-oriented Assurance - Comprehensive Security by Explicit Assurances.- Measurements: Reliability vs Security.- Software Security Growth Modeling: Examining Vulnerabilities with Reliability Growth Models.- A Discrete Lognormal Model for Software Defects Affecting Quality of Protection.- Time-to-Compromise Model for Cyber Risk Reduction Estimation.- Assessing the risk of using vulnerable components.- Collection and analysis of attack data based on honeypots deployed on the Internet.- Quantitative Security Models.- Multilevel Security and Quality of Protection.- A Conceptual Model for Service Availability.- A SLA evaluation methodology in Service Oriented Architectures.- Towards a Notion of Quantitative Security Analysis.- Metrics for Anonymity and Confidentiality.- The Lower Bound of Attacks on Anonymity Systems - A Unicity Distance Approach.- Intersection Attacks on Web-Mixes: Bringing the Theory into Praxis.- Using Guesswork as a Measure for Confidentiality of Selectively Encrypted Messages.- Measuring Inference Exposure in Outsourced Encrypted Databases.

Preface.- Industrial Experience.- Security Risk Analysis.- Security Quality Assurance.- Measurement-Based Decision Making and Risk Management.- Empirical Assessment of Security Architectures and Solutions.- Mining Data from Attacks and Vulnerabilities Repositories.- Security Metrics.- Measurement Theory and Formal Theories of Security Metrics.- Security Measurement and Monitoring.- Experimental Verification and Validation of Models.- Simulation and Statistical Analysis, Stochastic Modeling.- Reliability Analysis.- Index.