Full metadata record
DC FieldValueLanguage
dc.contributor.authorMock, Ralf Günter-
dc.contributor.authorStraumann, Hugo-
dc.contributor.authorFischer, Andreas-
dc.date.accessioned2018-11-27T18:07:59Z-
dc.date.available2018-11-27T18:07:59Z-
dc.date.issued2014-
dc.identifier.isbn978-1-138-00123-7de_CH
dc.identifier.isbn978-1-315-81559-6de_CH
dc.identifier.urihttps://digitalcollection.zhaw.ch/handle/11475/13314-
dc.description.abstractEngineering risk assessment approaches look back on a longtime success story. This development has not been repeated in Information Technology (IT). The paper outlines the diverging development of (risk) analysis as driven by operators of sites and of IT infrastructures. The limitation of IT approaches is exemplified by the IT trend of Bring Your Own Device at enterprises. There, Chief Information Officers (CIO) are key persons when deciding about usage and acceptance of any evaluation  procedures. IT compliance checks and risk assessment approaches are discussed. In order to overcome their emerging weaknesses in the field, a two stage procedure in IT risk assessment is suggested: It starts with IT compliance checks to ensure basic protection of IT system operation. Second, a FMEA-like approach is adapted to cover non-standard processes further structured by engineering safety principles as Defence-in-Depth. The pros and cons of the procedure are discussed.de_CH
dc.language.isoende_CH
dc.publisherTaylor & Francisde_CH
dc.rightsLicence according to publishing contractde_CH
dc.subjectRisikoanalysede_CH
dc.subjectIT securityde_CH
dc.subject.ddc004: Informatikde_CH
dc.titleA second chance for risk assessment in IT system analysis?de_CH
dc.typeKonferenz: Paperde_CH
dcterms.typeTextde_CH
zhaw.departementSchool of Engineeringde_CH
zhaw.organisationalunitInstitut für Angewandte Informationstechnologie (InIT)de_CH
zhaw.publisher.placeLondonde_CH
zhaw.conference.detailsEuropean Safety and Reliability Conference (ESREL 2013), Amsterdam, Netherlands, 30 September - 2 October 2013de_CH
zhaw.funding.euNode_CH
zhaw.originated.zhawYesde_CH
zhaw.pages.end2244de_CH
zhaw.pages.start2237de_CH
zhaw.publication.statuspublishedVersionde_CH
zhaw.publication.reviewPeer review (Publikation)de_CH
zhaw.title.proceedingsSafety, reliability and risk analysis : beyond the horizonde_CH
Appears in collections:Publikationen School of Engineering

Files in This Item:
There are no files associated with this item.


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.