Vis enkel innførsel

dc.contributor.authorTran, Le Minh Sang
dc.contributor.authorSolhaug, Bjørnar
dc.contributor.authorStølen, Ketil
dc.date.accessioned2017-02-28T11:05:31Z
dc.date.available2017-02-28T11:05:31Z
dc.date.created2016-02-24T10:57:50Z
dc.date.issued2013
dc.identifier.isbn9788214053227
dc.identifier.urihttp://hdl.handle.net/11250/2432312
dc.description.abstractSecurity risk analysis should be conducted regularly for organizations to maintain an acceptable level of security. In principle, all risks that are unacceptable according to the predefined criteria should be mitigated. However, risk mitigation comes at a cost, and only the countermeasures that cost-efficiently mitigate risks should be implemented. This report presents an approach to integrate the countermeasure cost-benefit assessment into the risk analysis, and to provide decision makers with the necessary decision support. The approach comes with the necessary modeling support, a calculus for reasoning about the countermeasure cost and effect, as well as means for visualization of the results to aid decision makers. The approach is generic in the sense that the modeling and analysis techniques can be instantiated in several established approaches to risk assessment. In this report we demonstrate the instantiation in CORAS and exemplify the approach using an eHealth scenario.
dc.language.isoengnb_NO
dc.publisherSINTEFnb_NO
dc.relation.ispartofSINTEF Rapport
dc.relation.ispartofseriesSINTEF Rapport;
dc.titleAn Approach to Select Cost-Effective Risk Countermeasures Exemplified in CORASnb_NO
dc.typeResearch reportnb_NO
dc.source.pagenumber40nb_NO
dc.source.issueA24343nb_NO
dc.identifier.cristin1339528
dc.relation.projectStiftelsen SINTEF: 102002252nb_NO
cristin.unitcode7401,90,12,0
cristin.unitnameNettbaserte systemer og tjenester
cristin.ispublishedtrue
cristin.fulltextoriginal


Tilhørende fil(er)

Thumbnail

Denne innførselen finnes i følgende samling(er)

Vis enkel innførsel