U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

Measurements for Information Security

Research

These are current NIST research to identify meaningful metrics and measures in context to understand the effectiveness and resource needs of different cybersecurity technical measures.

 

Measuring Security Risk in Enterprise Networks

Methodology to measure the overall system risk by combining the attack graph structure with the Common Vulnerability Scoring System (CVSS).

 

Cyber Risk Analytics

Research and prototype methods and tools to enable predictive risk analytics and identify cyber risk trends.

 

 

Created July 01, 2020, Updated October 12, 2021