The TELEMETRY project has completed and received approval for deliverable D2.1 “Analysis of Indicators and Metrics for Vulnerability Representation”, edited by Steve Taylor, University of Southampton. The deliverable was submitted on 30 November 2024.
The scope of this deliverable is to analyse mechanisms, Indicators and metrics that can be used to represent the vulnerabilities and security posture of components and systems. As such, this deliverable focuses on the notion of “Indicators”, what they mean, what uses they can be put to, and how they can be used.
This deliverable has documented work undertaken so far in TELEMETRY regarding Indicators. We have defined the concept of Indicators, shown how Indicators fit within the (updated) TELEMETRY framework architecture that enables the different tools created by the project to interact and communicate, and this communication is facilitated by the Indicator concept. We have described the infrastructural components and how they support Indicators, tools that generate different types of Indicators, and other tools that consume Indicators, analyse them and either generate new Indicators or output decision support information to the operator of the TELEMETRY framework to guide courses of action. We have also given a brief example in one of the TELEMETRY use cases to illustrate Indicators’ use within a real situation.
This deliverable has also taken an opportunity to provide an update to the TELEMETRY architecture, introduced in D1.1, and this is discussed with respect the concept and processing of Indicators. Within this architecture, TELEMETRY has created several tools that generate (and consume) Indicators, and these are discussed as updates to the tool descriptions in D1.1. Illustrative examples of uses of Indicators are provided by way of descriptions of how they are used by other TELEMETRY tools and in one of the TELEMETRY pilots.
The key purpose of Indicators has been established, which is to provide information for decision support in order to help practitioners, but in addition, the notion of Indicators has proved to be of great use within the project as a communication mechanism, and there is further work to be done regarding Indicators, in all tools that either generate or consume Indicators, as well as the infrastructural components that support their reporting, aggregation, storage and display. Some of this work is in interpreting different Indicators to enable mappings between the values reported in an Indicator and the component consuming it, as illustrated by the SSM consuming results of the ACRAM access control risk tool, which itself consumes Indicators from scanning tools. This work will continue and develop as part of WP2 as it contributes to future tasks such as integration of the TELEMETRY framework and user trials within the project’s use cases and will be reported in subsequent deliverables.
To read the deliverable, please click here.
