Title :
Risk Assessment Methodology Based on the NISTIR 7628 Guidelines
Author :
Abercrombie, Robert K. ; Sheldon, Frederick T. ; Hauser, Katie R. ; Lantz, Margaret W. ; Mili, Ali
Abstract :
Earlier work describes computational models of critical infrastructure that allow an analyst to estimate the security of a system in terms of the impact of loss per stakeholder resulting from security breakdowns. Here, we consider how to identify, monitor and estimate risk impact and probability for different smart grid stakeholders. Our constructive method leverages currently available standards and defined failure scenarios. We utilize the National Institute of Standards and Technology (NIST) Interagency or Internal Reports (NISTIR) 7628 as a basis to apply Cyberspace Security Econometrics system (CSES) for comparing design principles and courses of action in making security-related decisions.
Keywords :
Computer security; Mathematical model; Organizations; Risk management; Smart grids; Vectors; Algorithms; Cyber Security Metrics; Design; Economics; Experimentation; Information Security; Measurement; Performance; Reliability; Risk Management; Security; Theory; Verification;
Conference_Titel :
System Sciences (HICSS), 2013 46th Hawaii International Conference on
Conference_Location :
Wailea, HI, USA
Print_ISBN :
978-1-4673-5933-7
Electronic_ISBN :
1530-1605
DOI :
10.1109/HICSS.2013.466
