CiteULike sdehousse's CiteULike Search Register Log in
CiteULike is a free online bibliography manager. Register and you can start organising your references online.

Security Risk Vector for Quantitative Asset Assessment Export

by: Yoon J. Chung, Injung Kim, Namhoon Lee, Taek Lee, Hoh P. In
Computational Science and Its Applications โ€“ ICCSA 2005 (2005), pp. 274-283.

Citation Format

[Posts]

View FullText article


sdehousse's tags for this article

asset risk security

X Reviews [Write a review of this article]

X Find related articles from these CiteULike users

X Find related articles with these CiteULike tags

X Posting History

X Abstract

There are standard risk analysis methodologies like GMITS and ISO17799, but new threats and vulnerabilities appear day by day because the IT organizations, its infrastructure, and its environment are changing. Accordingly, the methodologies must evolve in step with the change. Risk analysis methods are generally composed of asset identification, vulnerability analysis, safeguard identification, risk mitigation, and safeguard implementation. As the first process, the asset identification is important because the target scope of risk analysis is defined. This paper proposes a new approach, security risk vector, for evaluating assets quantitatively. A case study is presented.


X BibTeX record

X RIS record


Privacy Statement | Terms & Conditions
CiteULike organises scholarly (or academic) papers or literature and provides bibliographic (which means it makes bibliographies) for universities and higher education establishments. It helps undergraduates and postgraduates. People studying for PhDs or in postdoctoral (postdoc) positions. The service is similar in scope to EndNote or RefWorks or any other reference manager like BibTeX, but it is a social bookmarking service for scientists and humanities researchers.