| Title | CRAC: Confidentiality Risk Assessment and IT-Architecture Comparison |
|---|---|
| Author | Morali, Ayse; Zambon, Emmanuele; Etalle, Sandro; Wieringa, Roel |
| Date | 2010-08-25 |
| Publisher | IEEE Computer Society Press |
| Abstract | CRAC is an IT-architecture-based method for assessing and comparing confidentiality risks of distributed IT systems. The method determines confidentiality risks by taking into account the effects of the leakage of confidential information (e.g. industrial secrets), and the paths that may be followed by different attackers (e.g. insider and outsider). We evaluate its effectiveness by applying it to a real-world outsourcing case. |
| Publication | http://purl.utwente.nl/publications/72631 |
| Persistent Identifier | URN:NBN:NL:UI:28-72631 |
| Metadata | XML |
| Repository | University of Twente |
Go to page top
Go back to contents
Go back to site navigation