Why 2 times 2 ain't neccessarily 4 - at least not in IT security risk assessment
نویسنده
چکیده
Recently, a novel approach towards semi-quantitative IT security risk assessment has been proposed in the draft IEC 62443-3-2. This approach is analyzed from several different angles, e.g. embedding into the overall standard series, semantic and methodological aspects. As a result, several systematic flaws in the approach are exposed. As a way forward, an alternative approach is proposed which blends together semi-quantitative risk assessment as well as threat and risk analysis.
منابع مشابه
Why 2 times 2 ain t necessarily 4 at least not in IT security risk assessment
Recently, a novel approach towards semi-quantitative IT security risk assessment has been proposed in the draft IEC 62443-3-2. This approach is analyzed from several different angles, e.g. embedding into the overall standard series, semantic and methodological aspects. As a result, several systematic flaws in the approach are exposed. As a way forward, an alternative approach is proposed which ...
متن کاملارائه الگویی برای ارزیابی ریسک آتشسوزیهای عمدی
Background & Objectives : It is not possible to live without using fire. However, fire could destruct human properties in a short time. One of the most important types of fire is intentional fire. This type of fire has become a great problem for insurance companies, fire departments, industries, government and business in the recent years. This study aimed to provide a framework for risk assess...
متن کاملIntroduction to EMC for Functional Safety
1. Summary ..........................................................................................................................1 2. Introduction to the problem...............................................................................................2 3. IEC 61508 and IEC/TS 61000-1-2...................................................................................3 4. Appropriate me...
متن کاملMeasuring the well-being of older women: The transition from wife to widow
The old refrain "His problem ain't so much what he don't know, but what he does that just ain't so" is an apt description of the public perception of poverty in old age. Thanks in large part to dramatic increases in social security benefits and in the incidence and size of private pension benefits, older Americans are now no more prone to suffer from inadequate income than are any other age gro...
متن کاملIT Risk Assessment for Group6 Healthcare Clinic Report
1.1 Case Study overview including organizational diagram.....................................3 1.2 Motivation and justification........................................................................................4 1.3 Why risk assessment is important (impact)....................................................4 2. The scope of Risk assessment in compliance with ISO27001.........................
متن کامل