Autor:	Braband, Jens
Rok vydání:	2016
Předmět:	Computer Science - Cryptography and Security
Druh dokumentu:	Working Paper
Popis:	Recently, a novel approach towards semi-quantitative IT security risk assessment has been proposed in the draft IEC 62443-3-2. This approach is analyzed from several different angles, e.g. embedding into the overall standard series, semantic and methodological aspects. As a result, several systematic flaws in the approach are exposed. As a way forward, an alternative approach is proposed which blends together semi-quantitative risk assessment as well as threat and risk analysis. Comment: 10 pages, 2 figures, 2 tables, submitted to SICHERHEIT2016
Databáze:	arXiv
Externí odkaz:	http://arxiv.org/abs/1603.03710 Zobrazit plný text záznamu View this record from Arxiv