Title :
Collaboration in security assessments for critical infrastructures
Author :
Köster, Friedrich ; Klaas, Michael ; Nguyen, Hanh Quyen ; Brändle, Markus ; Obermeier, Sebastian ; Brenne, W.
fDate :
March 27 2009-April 30 2009
Abstract :
Security assessments for IT systems in critical infrastructures involve many different stakeholders. Only the combination of their knowledge can produce a comprehensive view of the system structure and of the vulnerabilities and threats to the system. In order to enable all stakeholders to update the assessment information on a regular basis, the collaboration process needs methodological and technical support. We formalize this process with regard to the ESSAM assessment method and introduce a central knowledge base that facilitates the intra-organizational collaboration between development teams for different systems.
Keywords :
DP management; knowledge management; risk management; security of data; ESSAM assessment method; IT system; critical infrastructure; intra-organizational collaboration; knowledge management; risk management; security assessment; Collaboration; Control systems; Data security; Embedded system; IEC standards; ISO standards; Information security; National security; Risk management; SCADA systems; Collaborative Security Assessment; Critical Infrastructure Security; Security Knowledge Management; Threat Modeling;
Conference_Titel :
Critical Infrastructures, 2009. CRIS 2009. Fourth International Conference on
Conference_Location :
Linkoping
Print_ISBN :
978-1-4244-4636-0
DOI :
10.1109/CRIS.2009.5071499
