Dehghanniri, H;
Letier, E;
Borrion, H;
(2015)
Improving Security Decision under Uncertainty: A Multidisciplinary Approach.
In: Onwubiko, C, (ed.)
(Proceedings) International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA).
(pp. pp. 1-7).
IEEE: London, UK.
Preview |
Text
Borrion Improving Security Decision under Uncertainty.pdf - Accepted Version Download (738kB) | Preview |
Abstract
Security decision-making is a critical task in tackling security threats affecting a system or process. It often involves selecting a suitable resolution action to tackle an identified security risk. To support this selection process, decision-makers should be able to evaluate and compare available decision options. This article introduces a modelling language that can be used to represent the effects of resolution actions on the stakeholders' goals, the crime process, and the attacker. In order to reach this aim, we develop a multidisciplinary framework that combines existing knowledge from the fields of software engineering, crime science, risk assessment, and quantitative decision analysis. The framework is illustrated through an application to a case of identity theft.
| Type: | Proceedings paper |
|---|---|
| Title: | Improving Security Decision under Uncertainty: A Multidisciplinary Approach |
| Event: | International Conference on Cyber Situational Awareness, Data Analytics and Assessment (CyberSA) |
| Location: | London, UNITED KINGDOM |
| Dates: | 08 June 2015 - 09 June 2015 |
| Open access status: | An open access version is available from UCL Discovery |
| DOI: | 10.1109/CyberSA.2015.7166134 |
| Publisher version: | https://doi.org/10.1109/CyberSA.2015.7166134 |
| Language: | English |
| Additional information: | This version is the author accepted manuscript. For information on re-use, please refer to the publisher’s terms and conditions. |
| Keywords: | Science & Technology, Technology, Computer Science, Theory & Methods, Engineering, Electrical & Electronic, Computer Science, Engineering, security, requirements engineering, decision-making, risk, crime script, uncertainty, identity theft, SCRIPT ANALYSIS, REQUIREMENTS, PREVENTION |
| UCL classification: | UCL UCL > Provost and Vice Provost Offices UCL > Provost and Vice Provost Offices > UCL BEAMS UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Computer Science UCL > Provost and Vice Provost Offices > UCL BEAMS > Faculty of Engineering Science > Dept of Security and Crime Science |
| URI: | https://discovery.ucl.ac.uk/id/eprint/1489963 |
Loading...
Loading...Loading...| 1. |  United States | 15 |
| 2. |  Russian Federation | 2 |
| 3. |  Italy | 2 |
| 4. |  Netherlands | 1 |
| 5. |  Switzerland | 1 |
| 6. |  France | 1 |
| 7. |  Germany | 1 |
| 8. |  Turkey | 1 |
| 9. |  China | 1 |
Archive Staff Only
 |
View Item |
