Bridging the Gap between Security/Risk and Quality

An IT security vulnerability can be considered as an inherent weakness in a target system that could be exploited by a threat source. The underlying hypothesis in our proposal is that each identified attribute associated with the target entity to be controlled should show the highest quality satisfa...

Descripción completa

Guardado en:
Detalles Bibliográficos
Autores principales: Olsina Santos, Luis Antonio, Pesotskaya, Elena, Dieser, Alexander, Covella, Guillermo Juan
Formato: Objeto de conferencia
Lenguaje:Inglés
Publicado: 2013
Materias:
Ciencias Informáticas
security vulnerability
quality indicator
Measurements
Evaluation/methodology
Acceso en línea:http://sedici.unlp.edu.ar/handle/10915/76486
http://42jaiio.sadio.org.ar/proceedings/simposios/Trabajos/ASSE/13.pdf
Aporte de:
SEDICI (UNLP) de Universidad Nacional de La Plata
id I19-R120-10915-76486
record_format dspace
institution Universidad Nacional de La Plata
institution_str I-19
repository_str R-120
collection SEDICI (UNLP)
language Inglés
topic Ciencias Informáticas
security vulnerability
quality indicator
Measurements
Evaluation/methodology
spellingShingle Ciencias Informáticas
security vulnerability
quality indicator
Measurements
Evaluation/methodology
Olsina Santos, Luis Antonio
Pesotskaya, Elena
Dieser, Alexander
Covella, Guillermo Juan
Bridging the Gap between Security/Risk and Quality
topic_facet Ciencias Informáticas
security vulnerability
quality indicator
Measurements
Evaluation/methodology
description An IT security vulnerability can be considered as an inherent weakness in a target system that could be exploited by a threat source. The underlying hypothesis in our proposal is that each identified attribute associated with the target entity to be controlled should show the highest quality satisfaction level as an elementary indicator. The higher the quality indicator value achieved per each attribute, the lower the vulnerability indicator value and therefore the potential impact from the risk standpoint. In the present work, we discuss the added value of supporting the IT security and risk assessment areas with measurement and evaluation (M&E) methods and strategy, which are based on metrics and indicators. Also we illustrate excerpts of an M&E case study for characteristics and attributes of Security, and their potential risk assessment.
format Objeto de conferencia
Objeto de conferencia
author Olsina Santos, Luis Antonio
Pesotskaya, Elena
Dieser, Alexander
Covella, Guillermo Juan
author_facet Olsina Santos, Luis Antonio
Pesotskaya, Elena
Dieser, Alexander
Covella, Guillermo Juan
author_sort Olsina Santos, Luis Antonio
title Bridging the Gap between Security/Risk and Quality
title_short Bridging the Gap between Security/Risk and Quality
title_full Bridging the Gap between Security/Risk and Quality
title_fullStr Bridging the Gap between Security/Risk and Quality
title_full_unstemmed Bridging the Gap between Security/Risk and Quality
title_sort bridging the gap between security/risk and quality
publishDate 2013
url http://sedici.unlp.edu.ar/handle/10915/76486
http://42jaiio.sadio.org.ar/proceedings/simposios/Trabajos/ASSE/13.pdf
work_keys_str_mv AT olsinasantosluisantonio bridgingthegapbetweensecurityriskandquality
AT pesotskayaelena bridgingthegapbetweensecurityriskandquality
AT dieseralexander bridgingthegapbetweensecurityriskandquality
AT covellaguillermojuan bridgingthegapbetweensecurityriskandquality
bdutipo_str Repositorios
_version_ 1764820484198760450

Ejemplares similares