Abstraction Techniques for Validation Coverage Analysis and Test Generation
IEEE Transactions on Computers
Information Security Policies, Procedures, and Standards: Guidelines for Effective Information Security Management
Information Security Management Handbook, Fourth Edition, Volume 2
Information Security Management Handbook, Fourth Edition, Volume 2
Using the Common Criteria for It Security Evaluation
Using the Common Criteria for It Security Evaluation
Managing Information Security Risks: The Octave Approach
Managing Information Security Risks: The Octave Approach
From Specification Validation to Hardware Testing: A Unified Method
Proceedings of the IEEE International Test Conference on Test and Design Validity
Information Technology Control and Audit, Second Edition
Information Technology Control and Audit, Second Edition
Assessing and Managing Security Risk in IT Systems: A Structured Methodology
Assessing and Managing Security Risk in IT Systems: A Structured Methodology
Information Security Risk Analysis
Information Security Risk Analysis
Statistics for Business and Economics (with Student CD-ROM, iPod Key Term, and InfoTrac )
Statistics for Business and Economics (with Student CD-ROM, iPod Key Term, and InfoTrac )
Priority indexing model for evaluating and analysing organisations' information security systems
International Journal of Information Systems and Change Management
Hi-index | 0.00 |
This paper presents an analysis of fault propagation in information security solutions. It presents a unique and efficient approach to security assessment that can be useful for security planners, evaluators, managers, and IT owners to discover and correct weaknesses at any stage of security planning processes. Intuition and qualitative approaches are not adequate to guide accurate risk analysis in information security. In this paper, we present a rather formalised preventive approach to guide the risk management quantitatively. The quantitative approach determines the propagation of the design faults by use of a probabilistic method supported by a scoring scheme.