A Formal Methodology for Procedural Security Assessment

被引:0
|
作者
Weldemariam, Komminist [1 ]
Villafiorita, Adolfo [1 ]
机构
[1] Fdn Bruno Kessler, Ctr Informat Technol, I-38100 Trento, Italy
来源
5TH INTERNATIONAL CONFERENCE ON DIGITAL SOCIETY (ICDS 2011) | 2011年
关键词
procedures; security assessment; modeling and analysis; formal methods;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Formal analysis techniques can deliver important support during ICT-based innovation (or redesign) efforts in e-government services. This paper discusses a formal methodology for assessing the procedural security of an organization. We do so by explicitly reasoning on critical information flow named assets flows. With this it is possible to understand how critical assets are modified in unlawful manner, which can trigger security and privacy violations, thereby (automatically) detecting security weaknesses within an organization under evaluation.
引用
收藏
页码:146 / 151
页数:6
相关论文
共 50 条
  • [1] A Formal Methodology for Enterprise Information Security Risk Assessment
    Bhattacharjee, Jaya
    Sengupta, Anirban
    Mazumdar, Chandan
    2013 INTERNATIONAL CONFERENCE ON RISKS AND SECURITY OF INTERNET AND SYSTEMS (CRISIS), 2013,
  • [2] Formal Procedural Security Modeling and Analysis
    Weldemariam, Komminist
    Villafiorita, Adolfo
    CRISIS: 2008 THIRD INTERNATIONAL CONFERENCE ON RISKS AND SECURITY OF INTERNET AND SYSTEMS, PROCEEDINGS, 2008, : 249 - +
  • [3] Formal Security Assessment of Modbus Protocol
    Nardone, Roberto
    Rodriguez, Ricardo J.
    Marrone, Stefano
    2016 11TH INTERNATIONAL CONFERENCE FOR INTERNET TECHNOLOGY AND SECURED TRANSACTIONS (ICITST), 2016, : 142 - 147
  • [4] The Security Risk Assessment Methodology
    Liu, Chunlin
    Tan, Chong-Kuan
    Fang, Yea-Saen
    Lok, Tat-Seng
    INTERNATIONAL SYMPOSIUM ON SAFETY SCIENCE AND ENGINEERING IN CHINA, 2012, 2012, 43 : 600 - 609
  • [5] A formal methodology for integral security design and verification of network protocols
    Diaz, Jesus
    Arroyo, David
    Rodriguez, Francisco B.
    JOURNAL OF SYSTEMS AND SOFTWARE, 2014, 89 : 87 - 98
  • [6] A Security Assessment Methodology for Critical Infrastructures
    Caselli, Marco
    Kargl, Frank
    CRITICAL INFORMATION INFRASTRUCTURES SECURITY (CRITIS 2014), 2016, 8985 : 332 - 343
  • [7] Research on maritime formal safety assessment (FSA) methodology
    Chen, WJ
    Hao, YG
    PROGRESS IN SAFETY SCIENCE AND TECHNOLOGY, VOL 4, PTS A AND B, 2004, 4 : 2373 - 2378
  • [8] Formal Safety and Security Assessment of an Avionic Architecture with Alloy
    Brunel, Julien
    Rioux, Laurent
    Paul, Stephane
    Faucogney, Anthony
    Vallee, Frederique
    ELECTRONIC PROCEEDINGS IN THEORETICAL COMPUTER SCIENCE, 2014, (150): : 8 - 19
  • [9] Security assurance assessment methodology for hybrid clouds
    Hudic, Aleksandar
    Smith, Paul
    Weippl, Edgar R.
    COMPUTERS & SECURITY, 2017, 70 : 723 - 743
  • [10] Methodology of Cyber Security Assessment in the Smart Grid
    Woo, Pil Sung
    Kim, Balho H.
    JOURNAL OF ELECTRICAL ENGINEERING & TECHNOLOGY, 2017, 12 (02) : 495 - 501
12345