Key points are not available for this paper at this time.
We survey existing security metrics in software architecture and software engineering. Metrics are adapted to indicate resistance of an application against local malicious software (malware) attacks. A repository of generic attacks is presented as well as the concept of resistance classes for software products.
Hanno Langweg (Mon,) studied this question.