A Risk Based Approach for Security Assurance Evaluation of IT Systems

2009 Seventh Annual Communication Networks and Services Research Conference Pub Date : 2009-05-11 DOI:10.1109/CNSR.2009.74

Moussa Ouedraogo, H. Mouratidis, D. Khadraoui, E. Dubois

引用次数: 4

Abstract

Research literature has argued the need for a methodology to measure security assurance levels of a system as vital in order to maintain and improve the overall system security. This paper proposes a risk-based security assurance metric and aggregation techniques to be incorporated in a methodology for the evaluation of IT systems security assurance.

查看原文本刊更多论文

基于风险的IT系统安全保障评估方法

研究文献认为需要一种方法来度量系统的安全保证级别，这对于维护和改进整个系统的安全性至关重要。本文提出了一种基于风险的安全保障度量和聚合技术，将其纳入IT系统安全保障评估方法中。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2009 Seventh Annual Communication Networks and Services Research Conference

自引率

0.00%

发文量