Assets Dependencies Model in Information Security Risk Management - Information and Communication Technology
Conference Papers Year : 2014

Assets Dependencies Model in Information Security Risk Management

Abstract

Information security risk management is a fundamental process conducted for the purpose of securing information assets in an organization. It usually involves asset identification and valuation, threat analysis, risk analysis and implementation of countermeasures. A correct asset valuation is a basis for accurate risk analysis, but there is a lack of works describing the valuation process with respect to dependencies among assets. In this work we propose a method for inspecting asset dependencies, based on common security attributes - confidentiality, integrity and availability. Our method should bring more detailed outputs from the risk analysis and therefore make this process more objective.
Fichier principal
Vignette du fichier
978-3-642-55032-4_40_Chapter.pdf (235.97 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01397241 , version 1 (15-11-2016)

Licence

Identifiers

Cite

Jakub Breier, Frank Schindler. Assets Dependencies Model in Information Security Risk Management. 2nd Information and Communication Technology - EurAsia Conference (ICT-EurAsia), Apr 2014, Bali, Indonesia. pp.405-412, ⟨10.1007/978-3-642-55032-4_40⟩. ⟨hal-01397241⟩
148 View
463 Download

Altmetric

Share

More