• DocumentCode
    3364427
  • Title

    Maintaining results from security assessments

  • Author

    Lund, Mass Soldal ; Den Braber, Folker ; Stølen, Ketil

  • Author_Institution
    Telecom & Informatics, SINTEF, Trondheim, Norway
  • fYear
    2003
  • fDate
    26-28 March 2003
  • Firstpage
    341
  • Lastpage
    350
  • Abstract
    Security assessments are cosily and lime consuming and cannot be carried out from scratch each lime a system is updated or modified This motivates the need for specific methodology addressing the maintenance Of assessment results, in particular, and a component-oriented approach to security assessment in general This paper presents such a methodology in the selling of model-based security assessment as developed by the EU-project CORAS. The main focus is on the maintenance part.
  • Keywords
    object-oriented programming; risk management; security of data; software maintenance; CORAS; component-oriented approach; maintenance; model-based security assessment; model-based security risk assessment; Communication system security; Distributed processing; Documentation; Failure analysis; Fault trees; Hazards; Risk analysis; Risk management; Unified modeling language; XML;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Software Maintenance and Reengineering, 2003. Proceedings. Seventh European Conference on
  • ISSN
    1534-5351
  • Print_ISBN
    0-7695-1902-4
  • Type

    conf

  • DOI
    10.1109/CSMR.2003.1192442
  • Filename
    1192442
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3364427