eTVRA: a threat, vulnerability and risk assessment tool for eEurope

Authors:
Judith E. Y. Rossebø;Scott Cadzow;Paul Sijben
Affiliations:
The Norwegian University of Science and Technology;Cadzow Communications, UK;ETSI STF
Venue:
iTrust'06 Proceedings of the 4th international conference on Trust Management
Year:
2006

Citing 0
Cited 2

Anonymous Resolution of DNS Queries

OTM '08 Proceedings of the OTM 2008 Confederated International Conferences, CoopIS, DOA, GADA, IS, and ODBASE 2008. Part II on On the Move to Meaningful Internet Systems
On the Operational Security Assurance Evaluation of Networked IT Systems

NEW2AN '09 and ruSMART '09 Proceedings of the 9th International Conference on Smart Spaces and Next Generation Wired/Wireless Networking and Second Conference on Smart Spaces

Quantified Score

Hi-index	0.00

Visualization

Abstract

Securing the evolving telecommunications environment and establishing trust in its services and infrastructure is crucial for enabling the development of modern public services. The security of the underlying network and services environment for eBusiness is addressed as a crucial area in the eEurope action plan [2]. In response to this Specialist Task Force (STF) 292 associated with the European Telecommunication Standardisation Institute (ETSI) TISPAN [3] under contract from eEurope, has developed a threat, vulnerability and risk assessment (eTVRA) method and tool for use in standardisation. Using the eTVRA method and tool, the threats to a next generation network (NGN) can be analyzed and a set of recommended countermeasures identified that when implemented will reduce the overall risk to users of NGNs. In this paper we present the eTVRA method and tool along with the results of using the eTVRA for an analysis of a Voice over IP (VoIP) scenario of the NGN.