Pregled bibliografske jedinice broj: 260284
Information System Security Threats Classifications
Information System Security Threats Classifications // Information and Intelligent Systems ; Conference Proceedings / Aurer Boris ; Bača Miroslav (ur.). Varaždin : FOI, 2006 / Aurer Boris ; Bača Miroslav (ur.).
Varaždin: Fakultet organizacije i informatike Sveučilišta u Zagrebu, 2006. str. 239-247 (predavanje, međunarodna recenzija, cjeloviti rad (in extenso), znanstveni)
CROSBI ID: 260284 Za ispravke kontaktirajte CROSBI podršku putem web obrasca
Naslov
Information System Security Threats Classifications
Autori
Gerić, Sandro ; Hutinski, Željko
Vrsta, podvrsta i kategorija rada
Radovi u zbornicima skupova, cjeloviti rad (in extenso), znanstveni
Izvornik
Information and Intelligent Systems ; Conference Proceedings / Aurer Boris ; Bača Miroslav (ur.). Varaždin : FOI, 2006
/ Aurer Boris ; Bača Miroslav - Varaždin : Fakultet organizacije i informatike Sveučilišta u Zagrebu, 2006, 239-247
Skup
Information and Intelligent Systems 2006
Mjesto i datum
Varaždin, Hrvatska, 20.09.2006. - 22.09.2006
Vrsta sudjelovanja
Predavanje
Vrsta recenzije
Međunarodna recenzija
Ključne riječi
information system security; ISS; security risk; threat; classification; criteria
Sažetak
Information systems are exposed to different types of security risks. The consequences of information systems security (ISS) breaches can vary from e.g. damaging the data base integrity to physical "destruction" of entire information system facilities, and can result with minor disruptions in less important segments of information systems, or with significant interruptions in information systems functionality. The sources of security risks are different, and can origin from inside or outside of information system facility, and can be intentional or unintentional. The precise calculation of loses caused by such incidents is often not possible because a number of small scale ISS incidents are never detected, or detected with a significant time delay, a part of incidents are interpreted as an accidental mistakes, and all that results with an underestimation of ISS risks. This paper addresses the different types and criteria of information system security risks (threats) classification and gives an overview of most common classifications used in literature and in practice. We define a common set of criteria that can be used for information system security threats classification, which will enable the comparison and evaluation of different security threats from different security threats classifications.
Izvorni jezik
Engleski
Znanstvena područja
Informacijske i komunikacijske znanosti
