> Merkliste Sie können Bookmarks mittels Listen verwalten, loggen Sie sich dafür bitte in Ihr SLUB Benutzerkonto ein.
Medientyp: E-Artikel Titel: Threat scenario‐based security risk analysis using use case modeling in information systems Beteiligte: Kim, Young‐Gab; Cha, Sungdeok Erschienen: Wiley, 2012 Erschienen in: Security and Communication Networks, 5 (2012) 3, Seite 293-300 Sprache: Englisch DOI: 10.1002/sec.321 ISSN: 1939-0114; 1939-0122 Schlagwörter: Computer Networks and Communications ; Information Systems Entstehung: Anmerkungen: Beschreibung: ABSTRACTSuccessful Security Risk Analysis (SRA) enables us to develop a secure information management system and provides valuable analysis data for future risk estimation. One of the qualitative techniques for SRA is the scenario method. This provides a framework for our explorations that raises our awareness and appreciation of uncertainty. However, the existing scenario methods are too abstract to be applicable to some situations and have not been formalized in information systems (ISs) because they do not explicitly define artifacts or have any standard notation. Therefore, this paper proposes the improved scenario‐based SRA approach, which can create SRA reports using threat scenario templates and manage security risk directly in ISs. Furthermore, in order to show how to apply the proposed method in a specific environment, especially in a Broadband convergence Network (BcN) environment, a case study is presented. Copyright © 2011 John Wiley & Sons, Ltd. Zugangsstatus: Freier Zugang