A Formal Methodology for Procedural Security Assessment

被引:0
|
作者
Weldemariam, Komminist [1 ]
Villafiorita, Adolfo [1 ]
机构
[1] Fdn Bruno Kessler, Ctr Informat Technol, I-38100 Trento, Italy
来源
5TH INTERNATIONAL CONFERENCE ON DIGITAL SOCIETY (ICDS 2011) | 2011年
关键词
procedures; security assessment; modeling and analysis; formal methods;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Formal analysis techniques can deliver important support during ICT-based innovation (or redesign) efforts in e-government services. This paper discusses a formal methodology for assessing the procedural security of an organization. We do so by explicitly reasoning on critical information flow named assets flows. With this it is possible to understand how critical assets are modified in unlawful manner, which can trigger security and privacy violations, thereby (automatically) detecting security weaknesses within an organization under evaluation.
引用
收藏
页码:146 / 151
页数:6
相关论文
共 50 条
  • [31] Security risk assessment methodology for communities (RAM-C)
    Jaeger, C
    IEEE AEROSPACE AND ELECTRONIC SYSTEMS MAGAZINE, 2005, 20 (06) : 15 - 17
  • [32] Security risk assessment methodology for communities (RAM-C™)
    Jaeger, C
    PROBABILISTIC SAFETY ASSESSMENT AND MANAGEMENT, VOL 1- 6, 2004, : 1328 - 1332
  • [33] SVAPP methodology: A predictive security vulnerability assessment modeling method
    van Staalduinen, Mark Adrian
    Khan, Faisal
    Gadag, Veeresh
    JOURNAL OF LOSS PREVENTION IN THE PROCESS INDUSTRIES, 2016, 43 : 397 - 413
  • [34] Security risk assessment methodology for communities (RAM-C)
    Jaeger, C
    38TH ANNUAL 2004 INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY, PROCEEDINGS, 2004, : 106 - 110
  • [35] An information security control assessment methodology for organizations' financial information
    Otero, Angel R.
    INTERNATIONAL JOURNAL OF ACCOUNTING INFORMATION SYSTEMS, 2015, 18 : 26 - 45
  • [36] A Structured Security Assessment Methodology for Manufacturers of Critical Infrastructure Components
    Brandstetter, Thomas
    Knorr, Konstantin
    Rosenbaum, Ute
    EMERGING CHALLENGES FOR SECURITY, PRIVACY AND TRUST, 2009, 297 : 248 - 258
  • [37] Application of Formal Safety Assessment Methodology on Traffic Risks in Coastal Waters & Harbors
    Zhang, J. P.
    Hu, S. P.
    2009 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL ENGINEERING AND ENGINEERING MANAGEMENT, VOLS 1-4, 2009, : 2192 - 2196
  • [38] Modeling Middle East security: A formal assessment of regional responses to the Iraq war
    Snider, Lewis W.
    Strakes, Jason E.
    CONFLICT MANAGEMENT AND PEACE SCIENCE, 2006, 23 (03) : 211 - 226
  • [39] Formal Methods for Socio-technical Security (Formal and Automated Analysis of Security Ceremonies)
    Vigano, Luca
    COORDINATION MODELS AND LANGUAGES, 2022, 13271 : 3 - 14
  • [40] Methodology for energy security assessment considering energy system resilience to disruptions
    Martisauskas, Linas
    Augutis, Juozas
    Krikstolaitis, Ricardas
    ENERGY STRATEGY REVIEWS, 2018, 22 : 106 - 118
12345