Reusing risk analysis results - an extension for the CORAS risk analysis method

Viehmann, Johannes

2012

Conference Paper

Abstract

This paper shows how the results of CORAS risk analysis can be reused and combined. It introduces new models, diagram types and procedures as an extension of the CORAS method. Taking risk analysis artifacts generated for the individ-ual base components as input, probability values for unwanted incidents of complex systems can be calculated if the relations between these artifacts are modeled correctly. Initially developed for the S-Network, a trustworthy repository, this extension is predestined for analyzing large scale systems consisting of heter-ogeneous components, which no single analyst team could handle.

Author(s)

Viehmann, Johannes

Hauptwerk

International Conference on Privacy, Security, Risk and Trust and International Conference on Social Computing, PASSAT/SocialCom 2012

Konferenz

International Conference on Privacy, Security, Risk and Trust (PASSAT) 2012

International Conference on Social Computing (SocialCom) 2012

Options

Reusing risk analysis results - an extension for the CORAS risk analysis method