Full metadata record
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Mock, Ralf Günter | - |
dc.contributor.author | Kollmann, Eva | - |
dc.contributor.author | Straumann, Hugo | - |
dc.contributor.author | Ballhaus, Corin | - |
dc.date.accessioned | 2018-11-29T07:47:28Z | - |
dc.date.available | 2018-11-29T07:47:28Z | - |
dc.date.issued | 2009 | - |
dc.identifier.isbn | 978-0-415-55509-8 | de_CH |
dc.identifier.uri | https://digitalcollection.zhaw.ch/handle/11475/13316 | - |
dc.description.abstract | On the strength of experience with risk analysis methodology in IT-operating enterprises, an approach has to be able to deal with limited resources. This prompts an analyst to perform a heuristic and biased approach, which is typically a questionnaire structured by a IT security standard. The difficulty is to draw up a limited set of concise IT security related questions, which result in meaningful outcomes for IT risk analysis purposes. In the proposed approach, the Code of Practice ISO/IEC 27002 is used to structure the analysis and to restrict the number of questions. The Code’s recommendations are rephrased and a Guttman scale is introduced for an IT security FMEA-like risk analysis approach. For frequency assessments it is assumed that an implemented high-level security measurement results in low frequencies of undesired events. The paper pictures the adapted IT-FMEA approach and presents the results of a feasibility study at Switzerland's leading telecom provider. | de_CH |
dc.language.iso | en | de_CH |
dc.publisher | Taylor & Francis | de_CH |
dc.rights | Licence according to publishing contract | de_CH |
dc.subject | Audit | de_CH |
dc.subject | Tool | de_CH |
dc.subject | IT security | de_CH |
dc.subject | Risk assessment | de_CH |
dc.subject.ddc | 005: Computerprogrammierung, Programme und Daten | de_CH |
dc.subject.ddc | 658.5: Produktionssteuerung | de_CH |
dc.title | Guttman scaling in the FMEA of IT security objectives in enterprises | de_CH |
dc.type | Konferenz: Paper | de_CH |
dcterms.type | Text | de_CH |
zhaw.departement | School of Engineering | de_CH |
zhaw.organisationalunit | Institut für Informatik (InIT) | de_CH |
zhaw.publisher.place | London | de_CH |
zhaw.conference.details | European Safety and Reliability Conference (ESREL 2009), Prague, Czech Republic, 7-10 September 2009 | de_CH |
zhaw.funding.eu | No | de_CH |
zhaw.originated.zhaw | Yes | de_CH |
zhaw.pages.end | 1990 | de_CH |
zhaw.pages.start | 1983 | de_CH |
zhaw.publication.status | publishedVersion | de_CH |
zhaw.publication.review | Peer review (Publikation) | de_CH |
zhaw.title.proceedings | Reliability, risk, and safety : theory and applications | de_CH |
Appears in collections: | Publikationen School of Engineering |
Files in This Item:
There are no files associated with this item.
Show simple item record
Mock, R. G., Kollmann, E., Straumann, H., & Ballhaus, C. (2009). Guttman scaling in the FMEA of IT security objectives in enterprises [Conference paper]. Reliability, Risk, and Safety : Theory and Applications, 1983–1990.
Mock, R.G. et al. (2009) ‘Guttman scaling in the FMEA of IT security objectives in enterprises’, in Reliability, risk, and safety : theory and applications. London: Taylor & Francis, pp. 1983–1990.
R. G. Mock, E. Kollmann, H. Straumann, and C. Ballhaus, “Guttman scaling in the FMEA of IT security objectives in enterprises,” in Reliability, risk, and safety : theory and applications, 2009, pp. 1983–1990.
MOCK, Ralf Günter, Eva KOLLMANN, Hugo STRAUMANN und Corin BALLHAUS, 2009. Guttman scaling in the FMEA of IT security objectives in enterprises. In: Reliability, risk, and safety : theory and applications. Conference paper. London: Taylor & Francis. 2009. S. 1983–1990. ISBN 978-0-415-55509-8
Mock, Ralf Günter, Eva Kollmann, Hugo Straumann, and Corin Ballhaus. 2009. “Guttman Scaling in the FMEA of IT Security Objectives in Enterprises.” Conference paper. In Reliability, Risk, and Safety : Theory and Applications, 1983–90. London: Taylor & Francis.
Mock, Ralf Günter, et al. “Guttman Scaling in the FMEA of IT Security Objectives in Enterprises.” Reliability, Risk, and Safety : Theory and Applications, Taylor & Francis, 2009, pp. 1983–90.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.