A logic for uncertain probabilities
International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems
The consensus operator for combining beliefs
Artificial Intelligence
Electronic Notes in Theoretical Computer Science (ENTCS)
Proceedings of the 4th ACM workshop on Quality of protection
Science of Computer Programming
Electronic Commerce Research
An ontology- and Bayesian-based approach for determining threat probabilities
Proceedings of the 6th ACM Symposium on Information, Computer and Communications Security
Exploring different types of trust propagation
iTrust'06 Proceedings of the 4th international conference on Trust Management
| Hi-index | 0.00 |
This paper describes a method for risk analysis based on the approach used in CRAMM, but instead of using discrete measures for threats and vulnerabilities and look-up tables to derive levels of risk, it uses subjective beliefs about threats and vulnerabilities as input parameters, and uses the belief calculus of subjective logic to combine them. Belief calculus has the advantage that uncertainty about threat and vulnerability estimates can be taken into consideration, and thereby reflecting more realistically the nature of such estimates. As a result, the computed risk assessments will better reflect the real uncertainties associated with those risks.