Research Details

Using Integer Programming to Optimize Investments in Security Countermeasures: A Practical Tool for Fixed Budgets


Software engineers and businesses must make the difficult decision of how much of their budget to spend on software security mitigation for the applications and networks on which they depend. This article introduces a novel method of optimizing, using Integer Programming (IP), the combination of security countermeasures to be implemented in order to maximize system security under fixed resources. The article describes the steps involved in our approach, and discuss recent results with a case study client.

Publication Year: 2006
Type: Working Paper
Working Paper Number: 6

Adobe .pdf files require the Adobe Acrobat Reader.
Download and install the Adobe Acrobat Reader.