Results 11 to 20 of about 236,356 (234)

A framework for security requirements engineering [PDF]

, 2006
This paper presents a framework for security requirements elicitation and analysis, based upon the construction of a context for the system and satisfaction arguments for the security of the system. One starts with enumeration of security goals based on
Haley, Charles B., Laney, Robin, Moffett, Jonathan D., Nuseibeh, Bashar   +3 more
core   +1 more source

Integrating security and usability into the requirements and design process [PDF]

, 2006
According to Ross Anderson, 'Many systems fail because their designers protect the wrong things or protect the right things in the wrong way'. Surveys also show that security incidents in industry are rising, which highlights the difficulty of designing ...
Flechais, I, Mascolo, C, Sasse, MA
core   +1 more source

How does intellectual capital align with cyber security? [PDF]

, 2019
Purpose – To position the preservation and protection of intellectual capital as a cyber security concern. We outline the security requirements of intellectual capital to help Boards of Directors and executive management teams to understand their ...
Renaud, Karen, von Solms, Basie, von Solms, Rossouw   +2 more
core   +3 more sources

Run-time risk management in adaptive ICT systems [PDF]

, 2013
We will present results of the SERSCIS project related to risk management and mitigation strategies in adaptive multi-stakeholder ICT systems.
Chakravarthy, Ajay, Chen, Xiaoyu, Melas, Panos, Nasser, Bassem, Surridge, Mike   +4 more
core   +1 more source

COMPUTER SECURITY AND SECURITY TECHNOLOGIES [PDF]

Journal of Process Management and New Technologies, 2013
With the increasing development of computer and communications technology growth and increasing needs and development of information systems security. The problem of security must be approached with greater caution.
Lazar Stošić, Dragan Veličković
doaj  

Evaluation of Information Management Systems in Isfahan University of Medical Science by ISO/IEC 27001 Standard

مدیریت اطلاعات سلامت, 2015
Introduction: considering the information threats and the need to procedures for develop and improve security and confidentiality, international standard organization (ISO) established information security standard ISO/IEC 27001.
Rouhollah Sheikh Abumasoudi, Sahar Koohi Habibi, Maryam Ataei, Nazila Esmaeili   +3 more
doaj   +1 more source

Computing Optimal Security Strategies for Interdependent Assets

, 2012
Appears in Proceedings of the Twenty-Eighth Conference on Uncertainty in Artificial Intelligence (UAI2012)
Letchford, Joshua, Vorobeychik, Yevgeniy
openaire   +2 more sources

Determining Training Needs for Cloud Infrastructure Investigations using I-STRIDE [PDF]

, 2015
As more businesses and users adopt cloud computing services, security vulnerabilities will be increasingly found and exploited. There are many technological and political challenges where investigation of potentially criminal incidents in the cloud are ...
AS Sodiya, BD Carrier, D Zissis, F Swiderski, J Dykstra, JI James, K Ruan, LW Anderson, M Kerrigan, MW Allen, P Stephenson, R Kui, WA Jansen   +12 more
core   +1 more source

Enhancing security incident response follow-up efforts with lightweight agile retrospectives [PDF]

, 2017
Security incidents detected by organizations are escalating in both scale and complexity. As a result, security incident response has become a critical mechanism for organizations in an effort to minimize the damage from security incidents.
Glisson, William Bradley, Grispos, George, Storer, Tim   +2 more
core   +2 more sources

Estimating ToE Risk Level using CVSS [PDF]

, 2009
Security management is about calculated risk and requires continuous evaluation to ensure cost, time and resource effectiveness. Parts of which is to make future-oriented, cost-benefit investments in security.
Franqueira, Virginia Nunes Leal, Houmb, Siv Hilde   +1 more
core   +3 more sources