Title :
R.A.R.E.: Round-About Risk Evaluation
Author_Institution :
Temple University, USA
Abstract :
With risk assessment such a crucial part of any IT operation, it is necessary to re-evaluate some of the methods used to procure genuine responses from those under assessment. Many current risk assessment methodologies are set up to fail from the beginning. When performing a risk assessment, the evaluator is dependent on the integrity of the IT team s/he is questioning as part of the assessment. A new methodology called the Round-About Risk Evaluation (R.A.R.E.), implements techniques to reduce the Social Desirability Bias (SDB) that can lead to an assessment that does not represent the depth of security vulnerabilities. Implementation of R.A.R.E. prior to the start of a new a risk assessment, can be used to help the risk assessment team discover vulnerabilities that might otherwise go unreported.
Keywords :
risk management; security of data; genuine responses; risk assessment; round-about risk evaluation; security vulnerabilities; social desirability bias; Cancer; Diseases; Fires; Floods; Home computing; Maintenance; Military computing; Performance evaluation; Risk management; Security;
Conference_Titel :
Applications of Digital Information and Web Technologies, 2008. ICADIWT 2008. First International Conference on the
Conference_Location :
Ostrava
Print_ISBN :
978-1-4244-2623-2
Electronic_ISBN :
978-1-4244-2624-9
DOI :
10.1109/ICADIWT.2008.4664406
