Why 2 times 2 ain't neccessarily 4 - at least not in IT security risk assessment
| dc.contributor.author | Braband, Jens | |
| dc.contributor.editor | Meier, Michael | |
| dc.contributor.editor | Reinhardt, Delphine | |
| dc.contributor.editor | Wendzel, Steffen | |
| dc.date.accessioned | 2017-06-21T07:43:28Z | |
| dc.date.available | 2017-06-21T07:43:28Z | |
| dc.date.issued | 2016 | |
| dc.description.abstract | Recently, a novel approach towards semi-quantitative IT security risk assessment has been proposed in the draft IEC 62443-3-2. This approach is analyzed from several different angles, e.g. embedding into the overall standard series, semantic and methodological aspects. As a result, several systematic flaws in the approach are exposed. As a way forward, an alternative approach is proposed which blends together semi-quantitative risk assessment as well as threat and risk analysis. | en |
| dc.identifier.isbn | 978-3-88579-650-3 | |
| dc.identifier.pissn | 1617-5468 | |
| dc.language.iso | en | |
| dc.publisher | Gesellschaft für Informatik e.V. | |
| dc.relation.ispartof | Sicherheit 2016 - Sicherheit, Schutz und Zuverlässigkeit | |
| dc.relation.ispartofseries | Lecture Notes in Informatics (LNI) - Proceedings, Volume P-256 | |
| dc.title | Why 2 times 2 ain't neccessarily 4 - at least not in IT security risk assessment | en |
| dc.type | Text/Conference Paper | |
| gi.citation.endPage | 10 | |
| gi.citation.publisherPlace | Bonn | |
| gi.citation.startPage | 1 | |
| gi.conference.date | 5.-7. April 2016 | |
| gi.conference.location | Bonn |
Dateien
Originalbündel
1 - 1 von 1