A Threat Analysis Methodology for Security Evaluation and Enhancement Planning

A Threat Analysis Methodology for Security Evaluation and Enhancement Planning

Threat analysis gives how potential adversaries exploit system weakness to achieve their goals. It identifies threats and defines a risk mitigation policy for a specific architecture, functionality and configuration. In a threat analysis security metrics are a challenging requirement in order to det...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Stango, A., Prasad, N.R., Kyriazanos, D.M.
Format: Tagungsbericht
Sprache:eng
Schlagworte:
Application software
assets
Computer architecture
Computer security
Electronic mail
Information security
National security
Protection
Risk analysis
Risk management
security metrics
threat analysis
Unified modeling language
vulnerabilities
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Threat analysis gives how potential adversaries exploit system weakness to achieve their goals. It identifies threats and defines a risk mitigation policy for a specific architecture, functionality and configuration. In a threat analysis security metrics are a challenging requirement in order to determine the status of network security performance and to further enhance it by minimizing exposure to considerable threats and vulnerabilities. In this paper the authors propose a generic methodology for threat analysis and security metrics in order to prioritize threats and vulnerabilities and proceed with security enhancement planning in personal networks (PNs).
ISSN:2162-2108
DOI:10.1109/SECURWARE.2009.47