期刊名称:International Journal of Computer Science and Network Security
印刷版ISSN:1738-7906
出版年度:2010
卷号:10
期号:8
页码:93-102
出版社:International Journal of Computer Science and Network Security
摘要:Asset dependency paradigm can help us to represent the phenomena of risk dependency on the relevant assets. This paper is aimed to propose the information security risk analysis model, based on the threat-scenario dependency paradigm to represent the asset dependency. Two current approaches of asset dependency representation, threat dependency and security dimension dependency, still have limitations on consistency and the formulation of control��s role to reduce the risk. The proposed model can improve the consistency of threats mapping and the control��s roles to reduce the likelihood and degradation value of threat.
Loading...
