Defense trees for economic evaluation of security investments (Contributo in atti di convegno)

Type
Label
  • Defense trees for economic evaluation of security investments (Contributo in atti di convegno) (literal)
Anno
  • 2006-01-01T00:00:00+01:00 (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#doi
  • 10.1109/ARES.2006.46 (literal)
Alternative label
  • [1] Bistarelli S., [2] Fioravanti F., [2] Peretti P. (2006)
    Defense trees for economic evaluation of security investments
    in The First International Conference on Availability, Reliability and Security, ARES 2006, The International Dependability Conference - Bridging Theory and Practice, April 20-22 2006, Vienna, Vienna, Austria, 20-22 April 2006
    (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#autori
  • [1] Bistarelli S., [2] Fioravanti F., [2] Peretti P. (literal)
Pagina inizio
  • 416 (literal)
Pagina fine
  • 423 (literal)
Note
  • ISI Web of Science (WOS) (literal)
  • Scopu (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#affiliazioni
  • [1] CNR-IIT; PISA, Italy; [2] Dipartimento di Scienze, Universita' degli Studi \"G. d'Annunzio\" Pescara, Italy (literal)
Titolo
  • Defense trees for economic evaluation of security investments (literal)
Http://www.cnr.it/ontology/cnr/pubblicazioni.owl#isbn
  • 0-7695-2567-9 (literal)
Abstract
  • In this paper we present a mixed qualitative and quantitative approach for evaluation of Information Technology (IT) security investments. For this purpose, we model security scenarios by using defense trees, an extension of attack trees with attack countermeasures and we use economic quantitative indexes for computing the defender's return on security investment and the attacker's return on attack. We show how our approach can be used to evaluate effectiveness and economic profitability of countermeasures as well as their deterrent effect on attackers, thus providing decision makers with a useful tool for performing better evaluation of IT security investments during the risk management process. (literal)
Editore
Prodotto di
Autore CNR
Insieme di parole chiave

Incoming links:


Prodotto
Autore CNR di
Editore di
Insieme di parole chiave di
data.CNR.it