{"id":"https://openalex.org/W2026628014","doi":"https://doi.org/10.1093/comjnl/bxp094","title":"Security Metrics Foundations for Computer Security","display_name":"Security Metrics Foundations for Computer Security","publication_year":2009,"publication_date":"2009-11-03","ids":{"openalex":"https://openalex.org/W2026628014","doi":"https://doi.org/10.1093/comjnl/bxp094","mag":"2026628014"},"language":"en","primary_location":{"id":"doi:10.1093/comjnl/bxp094","is_oa":false,"landing_page_url":"https://doi.org/10.1093/comjnl/bxp094","pdf_url":null,"source":{"id":"https://openalex.org/S44643521","display_name":"The Computer Journal","issn_l":"0010-4620","issn":["0010-4620","1460-2067"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310311648","host_organization_name":"Oxford University Press","host_organization_lineage":["https://openalex.org/P4310311648","https://openalex.org/P4310311647"],"host_organization_lineage_names":["Oxford University Press","University of Oxford"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The Computer Journal","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5060200751","display_name":"Denis Tr\u010dek","orcid":"https://orcid.org/0000-0003-0727-1324"},"institutions":[{"id":"https://openalex.org/I153976015","display_name":"University of Ljubljana","ror":"https://ror.org/05njb9z20","country_code":"SI","type":"education","lineage":["https://openalex.org/I153976015"]}],"countries":["SI"],"is_corresponding":true,"raw_author_name":"D. Trcek","raw_affiliation_strings":["Faculty of Computer and Information Science, University of Ljubljana, Tr\u017ea\u0161ka c. 25, 1000 Ljubljana, Slovenia"],"affiliations":[{"raw_affiliation_string":"Faculty of Computer and Information Science, University of Ljubljana, Tr\u017ea\u0161ka c. 25, 1000 Ljubljana, Slovenia","institution_ids":["https://openalex.org/I153976015"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5060200751"],"corresponding_institution_ids":["https://openalex.org/I153976015"],"apc_list":{"value":2635,"currency":"GBP","value_usd":3232},"apc_paid":null,"fwci":2.221,"has_fulltext":false,"cited_by_count":9,"citation_normalized_percentile":{"value":0.90916025,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"53","issue":"7","first_page":"1106","last_page":"1112"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9783999919891357,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7749656438827515},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.6321996450424194},{"id":"https://openalex.org/keywords/computer-security-model","display_name":"Computer security model","score":0.5911508202552795},{"id":"https://openalex.org/keywords/metric","display_name":"Metric (unit)","score":0.5512552857398987},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.5410476922988892},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.5261927247047424},{"id":"https://openalex.org/keywords/field","display_name":"Field (mathematics)","score":0.5127295255661011},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.4714561402797699},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.45159339904785156},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.4331205189228058},{"id":"https://openalex.org/keywords/completeness","display_name":"Completeness (order theory)","score":0.4218325614929199},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3403826355934143},{"id":"https://openalex.org/keywords/software-engineering","display_name":"Software engineering","score":0.26638710498809814},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.09800216555595398},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.08990317583084106}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7749656438827515},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.6321996450424194},{"id":"https://openalex.org/C121822524","wikidata":"https://www.wikidata.org/wiki/Q5157582","display_name":"Computer security model","level":2,"score":0.5911508202552795},{"id":"https://openalex.org/C176217482","wikidata":"https://www.wikidata.org/wiki/Q860554","display_name":"Metric (unit)","level":2,"score":0.5512552857398987},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.5410476922988892},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5261927247047424},{"id":"https://openalex.org/C9652623","wikidata":"https://www.wikidata.org/wiki/Q190109","display_name":"Field (mathematics)","level":2,"score":0.5127295255661011},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.4714561402797699},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.45159339904785156},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.4331205189228058},{"id":"https://openalex.org/C17231256","wikidata":"https://www.wikidata.org/wiki/Q5156540","display_name":"Completeness (order theory)","level":2,"score":0.4218325614929199},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3403826355934143},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.26638710498809814},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.09800216555595398},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.08990317583084106},{"id":"https://openalex.org/C202444582","wikidata":"https://www.wikidata.org/wiki/Q837863","display_name":"Pure mathematics","level":1,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C21547014","wikidata":"https://www.wikidata.org/wiki/Q1423657","display_name":"Operations management","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1093/comjnl/bxp094","is_oa":false,"landing_page_url":"https://doi.org/10.1093/comjnl/bxp094","pdf_url":null,"source":{"id":"https://openalex.org/S44643521","display_name":"The Computer Journal","issn_l":"0010-4620","issn":["0010-4620","1460-2067"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310311648","host_organization_name":"Oxford University Press","host_organization_lineage":["https://openalex.org/P4310311648","https://openalex.org/P4310311647"],"host_organization_lineage_names":["Oxford University Press","University of Oxford"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"The Computer Journal","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":8,"referenced_works":["https://openalex.org/W172968368","https://openalex.org/W1979820341","https://openalex.org/W1992668131","https://openalex.org/W2102923895","https://openalex.org/W2112257544","https://openalex.org/W2118355922","https://openalex.org/W2337170324","https://openalex.org/W3217808497"],"related_works":["https://openalex.org/W2065250680","https://openalex.org/W3156070267","https://openalex.org/W8370799","https://openalex.org/W4361855476","https://openalex.org/W2372674753","https://openalex.org/W2336014427","https://openalex.org/W2008985775","https://openalex.org/W1528506334","https://openalex.org/W2092708554","https://openalex.org/W2353177111"],"abstract_inverted_index":{"Security":[0],"has":[1],"been":[2],"among":[3],"top":[4],"priority":[5],"in":[6,50,110,114,126],"computer":[7],"information":[8,111],"systems":[9,113],"for":[10,80,123,133],"more":[11],"than":[12],"a":[13,69,100,115],"decade.":[14],"Despite":[15],"the":[16,27,48,63,87],"importance":[17],"of":[18,34,38,57,78,82,108,149],"this":[19,51],"area,":[20],"it":[21,67],"is":[22,42,121],"interesting":[23],"to":[24,86,137],"note":[25],"that":[26,60,105],"area":[28],"still":[29],"lacks":[30],"(completeness":[31],"of)":[32],"one":[33],"its":[35],"basic":[36],"elements":[37],"scientific":[39],"arsenal,":[40],"which":[41],"metric.":[43],"This":[44],"paper":[45],"therefore":[46],"presents":[47,68],"situation":[49],"field":[52],"by":[53],"giving":[54],"an":[55,76,119],"analysis":[56,77],"existing":[58,84],"metrics":[59,85],"could":[61],"serve":[62],"above-mentioned":[64],"purpose.":[65],"Further,":[66],"generic":[70],"risk":[71],"management":[72],"model,":[73],"and":[74,146],"gives":[75],"possibilities":[79],"application":[81],"these":[83,96],"model.":[88],"It":[89],"also":[90],"introduces":[91],"new":[92,134,150],"metric":[93],"elements,":[94],"where":[95],"are":[97,103],"lacking.":[98],"As":[99],"result,":[101],"means":[102],"provided":[104],"enable":[106],"evaluation":[107],"security":[109,135,139],"technology":[112],"tangible":[116],"way.":[117],"Such":[118],"approach":[120],"essential":[122],"every":[124],"organization":[125],"business":[127,151],"areas":[128],"ranging":[129],"from":[130],"economical":[131],"justifications":[132],"implementations":[136],"customized":[138],"services":[140],"with":[141],"appropriate":[142],"service":[143],"costs":[144],"calculations,":[145],"even":[147],"development":[148],"models.":[152]},"counts_by_year":[{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":2},{"year":2014,"cited_by_count":1},{"year":2013,"cited_by_count":2},{"year":2012,"cited_by_count":3}],"updated_date":"2026-02-25T21:11:00.739837","created_date":"2025-10-10T00:00:00"}