Assessing and managing security risk in IT systems : a structured methodology
- نوع فایل : کتاب
- زبان : انگلیسی
- مؤلف : John McCumber
- ناشر : Boca Raton, FL : Auerbach Publications,
- چاپ و سال / کشور: 2005
- شابک / ISBN : 9780849322327
Description
Sec. 1. Security concepts -- Using models -- Defining information security -- Information as an asset -- Understanding threat and its relation to vulnerabilities -- Assessing risk variables: the risk assessment process -- Sec. II. The McCumber cube methodology -- The McCumber cube -- Determining information states and mapping information flow -- Decomposing the cube for security enforcement -- Information state analysis for compenents and subsystems -- Managing the security life cycle -- Safeguard analysis -- Practical applications of McCumber cube analysis -- Sec. III. Apendices.
