Risk-based assessment of the surety of information systems
When software is used in safety-critical, security-critical, or mission-critical situations, it is imperative to understand and manage the risks involved. A risk assessment methodology and toolset have been developed which are specific to software systems and address a broad range of risks including security, safety, and correct operation. A unique aspect of this methodology is the use of a modeling technique that captures interactions and tradeoffs among risk mitigators. This paper describes the concepts and components of the methodology and presents its application to example systems.
- Research Organization:
- Sandia National Labs., Albuquerque, NM (United States)
- Sponsoring Organization:
- USDOE, Washington, DC (United States)
- DOE Contract Number:
- AC04-94AL85000
- OSTI ID:
- 285501
- Report Number(s):
- SAND--96-2027; ON: DE96014165
- Country of Publication:
- United States
- Language:
- English
Similar Records
Understanding and managing risk in software systems
Risk-based assessment of the surety of information systems
Toward a risk-based approach to the assessment of the surety of information systems
Conference
·
Sat Jul 01 00:00:00 EDT 1995
·
OSTI ID:114488
Risk-based assessment of the surety of information systems
Conference
·
Tue Feb 28 23:00:00 EST 1995
·
OSTI ID:41350
Toward a risk-based approach to the assessment of the surety of information systems
Conference
·
Tue Feb 28 23:00:00 EST 1995
·
OSTI ID:46571