Title :
An application of qualitative risk analysis to computer security for the commercial sector
Author :
Bennett, S.P. ; Kailay, M.P.
Author_Institution :
Sch. of Comput. Sci., Birmingham Univ., UK
fDate :
30 Nov-4 Dec 1992
Abstract :
Computer security is emerging as the business risk of the 1990s for many organizations operating in the commercial sector. Unlike military, government, defense and financial organizations, the mid- to low-risk commercial sector does not have well-developed security procedures. However, owing to the very different security needs of the commercial sector, it is inappropriate to apply the procedures used by high-risk organizations. The characteristic system security concerns of the commercial sector, are identified, some solutions are suggested, and a structured and systematic approach to security assessment in the form of a qualitative approach to security risk analysis is investigated
Keywords :
DP management; commerce; information systems; risk management; security of data; business risk; commercial sector; computer security; qualitative approach; qualitative risk analysis; security assessment; security procedures; security risk analysis; Application software; Business; Computer crime; Computer science; Computer security; Data security; Defense industry; Government; Military computing; Risk analysis;
Conference_Titel :
Computer Security Applications Conference, 1992. Proceedings., Eighth Annual
Conference_Location :
San Antonio, TX
Print_ISBN :
0-8186-3115-5
DOI :
10.1109/CSAC.1992.228232
