Computer Safety, Reliability, and Security, 2004, p.311-324
2004
Volltextzugriff (PDF)
Details
- Autor(en) / Beteiligte
- Titel
- An Approach for Model-Based Risk Assessment
- Ist Teil von
- Computer Safety, Reliability, and Security, 2004, p.311-324
- Ort / Verlag
- Berlin, Heidelberg: Springer Berlin Heidelberg
- Erscheinungsjahr
- 2004
- Quelle
- Alma/SFX Local Collection
- Beschreibungen/Notizen
- Traditional risk analysis and assessment is based on failure-oriented models of the system. In contrast to this, model-based risk assessment (MBRA) utilizes success-oriented models describing all intended system aspects, including functional, operational and organisational aspects of the target. The target models are then used as input sources for complementary risk analysis and assessment techniques, as well as a basis for the documentation of the assessment results. The EU-funded CORAS project developed a tool-supported methodology for model-based risk analysis of security-critical systems. The methodology has been tried out within the telemedicine and e-commerce areas, and provided through a series of seven trials a sound basis for risk assessments. This paper gives an overview of the results with focus on how the approach can be applied for addressing security aspects in a safety critical application and discusses how the methodology can be applied as a part of a trust case development.
- Sprache
- Englisch
- Identifikatoren
- ISBN: 9783540231769, 3540231765ISSN: 0302-9743eISSN: 1611-3349DOI: 10.1007/978-3-540-30138-7_26Titel-ID: cdi_pascalfrancis_primary_16177725
- Format
- –
- Schlagworte
- Applied sciences, Computer science, control theory, systems, Exact sciences and technology, Fault Tree Analysis, Memory and file management (including protection and security), Memory organisation. Data processing, Risk Management Process, Safety Critical Application, Security Requirement, Software