Bridging the Gap between Security/Risk and Quality
An IT security vulnerability can be considered as an inherent weakness in a target system that could be exploited by a threat source. The underlying hypothesis in our proposal is that each identified attribute associated with the target entity to be controlled should show the highest quality satisfa...
Guardado en:
Autores principales: | , , , |
---|---|
Formato: | Objeto de conferencia |
Lenguaje: | Inglés |
Publicado: |
2013
|
Materias: | |
Acceso en línea: | http://sedici.unlp.edu.ar/handle/10915/76486 http://42jaiio.sadio.org.ar/proceedings/simposios/Trabajos/ASSE/13.pdf |
Aporte de: |
id |
I19-R120-10915-76486 |
---|---|
record_format |
dspace |
institution |
Universidad Nacional de La Plata |
institution_str |
I-19 |
repository_str |
R-120 |
collection |
SEDICI (UNLP) |
language |
Inglés |
topic |
Ciencias Informáticas security vulnerability quality indicator Measurements Evaluation/methodology |
spellingShingle |
Ciencias Informáticas security vulnerability quality indicator Measurements Evaluation/methodology Olsina Santos, Luis Antonio Pesotskaya, Elena Dieser, Alexander Covella, Guillermo Juan Bridging the Gap between Security/Risk and Quality |
topic_facet |
Ciencias Informáticas security vulnerability quality indicator Measurements Evaluation/methodology |
description |
An IT security vulnerability can be considered as an inherent weakness in a target system that could be exploited by a threat source. The underlying hypothesis in our proposal is that each identified attribute associated with the target entity to be controlled should show the highest quality satisfaction level as an elementary indicator. The higher the quality indicator value achieved per each attribute, the lower the vulnerability indicator value and therefore the potential impact from the risk standpoint. In the present work, we discuss the added value of supporting the IT security and risk assessment areas with measurement and evaluation (M&E) methods and strategy, which are based on metrics and indicators. Also we illustrate excerpts of an M&E case study for characteristics and attributes of Security, and their potential risk assessment. |
format |
Objeto de conferencia Objeto de conferencia |
author |
Olsina Santos, Luis Antonio Pesotskaya, Elena Dieser, Alexander Covella, Guillermo Juan |
author_facet |
Olsina Santos, Luis Antonio Pesotskaya, Elena Dieser, Alexander Covella, Guillermo Juan |
author_sort |
Olsina Santos, Luis Antonio |
title |
Bridging the Gap between Security/Risk and Quality |
title_short |
Bridging the Gap between Security/Risk and Quality |
title_full |
Bridging the Gap between Security/Risk and Quality |
title_fullStr |
Bridging the Gap between Security/Risk and Quality |
title_full_unstemmed |
Bridging the Gap between Security/Risk and Quality |
title_sort |
bridging the gap between security/risk and quality |
publishDate |
2013 |
url |
http://sedici.unlp.edu.ar/handle/10915/76486 http://42jaiio.sadio.org.ar/proceedings/simposios/Trabajos/ASSE/13.pdf |
work_keys_str_mv |
AT olsinasantosluisantonio bridgingthegapbetweensecurityriskandquality AT pesotskayaelena bridgingthegapbetweensecurityriskandquality AT dieseralexander bridgingthegapbetweensecurityriskandquality AT covellaguillermojuan bridgingthegapbetweensecurityriskandquality |
bdutipo_str |
Repositorios |
_version_ |
1764820484198760450 |