Towards Integrated Quantitative Security and Safety Risk Assessment

Jürgen Dobaj*, Christoph Schmittner, Michael Krisper, Georg Macher

*Korrespondierende/r Autor/-in für diese Arbeit

Publikation: Beitrag in Buch/Bericht/KonferenzbandBeitrag in einem KonferenzbandBegutachtung

Abstract

Although multiple approaches for the combination of safety and security analysis exist, there are still some major gaps to overcome before they can be used for combined risk management. This paper presents the existing gaps, based on an overview of available methods, which is followed by the proposal towards a solution to achieve coordinated risk management by applying a quantitative security risk assessment methodology. This methodology extends established safety and security risk analysis methods with an integrated model, denoting the relationship between adversary and victim, including the used capabilities and infrastructure. This model is used to estimate the resistance strength and threat capabilities, to determine attack probabilities and security risks.

Originalspracheenglisch
TitelComputer Safety, Reliability, and Security - SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Proceedings
Redakteure/-innenAlexander Romanovsky, Elena Troubitsyna, Ilir Gashi, Erwin Schoitsch, Friedemann Bitsch
Herausgeber (Verlag)Springer Verlag
Seiten102-116
Seitenumfang15
ISBN (Print)9783030262495
DOIs
PublikationsstatusVeröffentlicht - 9 Aug. 2019
Veranstaltung38th International Conference on Computer Safety, Reliability and Security: SAFECOMP 2019 - Turku, Finnland
Dauer: 10 Sept. 201913 Sept. 2019

Publikationsreihe

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band11699 LNCS
ISSN (Print)0302-9743
ISSN (elektronisch)1611-3349

Konferenz

Konferenz38th International Conference on Computer Safety, Reliability and Security
Land/GebietFinnland
OrtTurku
Zeitraum10/09/1913/09/19

ASJC Scopus subject areas

  • Theoretische Informatik
  • Informatik (insg.)

Fingerprint

Untersuchen Sie die Forschungsthemen von „Towards Integrated Quantitative Security and Safety Risk Assessment“. Zusammen bilden sie einen einzigartigen Fingerprint.

Dieses zitieren