Toggle Main Menu Toggle Search

Open Access padlockePrints

Selecting optimal subset of security controls

Lookup NU author(s): Dr Iryna Yevseyeva, Professor Aad van Moorsel


Full text for this publication is not currently held within this repository. Alternative links are provided below where available.


Choosing an optimal investment in information security is an issue most companies face these days. Which security controls to buy to protect the IT system of a company in the best way? Selecting a subset of security controls among many available ones can be seen as a resource allocation problem that should take into account conflicting objectives and constraints of the problem. In particular, the security of the system should be improved without hindering productivity, under a limited budget for buying controls. In this work, we provide several possible formulations of security controls subset selection problem as a portfolio optimization, which is well known in financial management. We propose approaches to solve them using existing single and multiobjective optimization algorithms. (C) 2015 The Authors. Published by Elsevier B.V.

Publication metadata

Author(s): Yevseyeva I, Basto-Fernandes V, Emmerich M, van Moorsel A

Publication type: Conference Proceedings (inc. Abstract)

Publication status: Published

Conference Name: Conference on ENTERprise Information Systems/International Conference on Project MANagement/Conference on Health and Social Care Information Systems and Technologies CENTERIS/ProjMAN/HCist

Year of Conference: 2015

Pages: 1035-1042

Online publication date: 15/09/2015

Acceptance date: 01/01/1900

Publisher: Elsevier


DOI: 10.1016/j.procs.2015.08.625

Series Title: Procedia Computer Science