publication . Other literature type . Thesis . 2014

Vulnerability Identification Errors in Security Risk Assessments

Taubenberger, Stefan;
Open Access
  • Published: 20 Mar 2014
  • Publisher: The Open University
Abstract
At present, companies rely on information technology systems to achieve their business objectives, making them vulnerable to cybersecurity threats. Information security risk assessments help organisations to identify their risks and vulnerabilities. An accurate identification of risks and vulnerabilities is a challenge, because the input data is uncertain. So-called ’vulnerability identification errors‘ can occur if false positive vulnerabilities are identified, or if vulnerabilities remain unidentified (false negatives). ‘Accurate identification’ in this context means that all vulnerabilities identified do indeed pose a risk of a security breach for the organis...
Powered by OpenAIRE Research Graph
Any information missing or wrong?Report an Issue