Finding and fixing vulnerabilities in information systems : the vulnerability assessment & mitigation methodology /

Show other versions (2)

Understanding an organization's reliance on information systems and how to mitigate the vulnerabilities of these systems can be an intimidating challenge--especially when considering less well-known weaknesses or even unknown vulnerabilities that have not yet been exploited. The authors, unders...

Full description

Bibliographic Details
Call Number:Libro Electrónico
Corporate Author: United States. Defense Advanced Research Projects Agency
Other Authors: Antón, Philip S.
Format: Electronic eBook
Language:Inglés
Published: Santa Monica, CA : Rand, 2003.
Series:Rand note ; MR-1601-DARPA.
Subjects:
Computer security.
Data protection.
Risk assessment.
Engineering & Applied Sciences.
Computer Science.
Sécurité informatique.
Protection de l'information (Informatique)
Évaluation du risque.
risk assessment.
COMPUTERS > Internet > Security.
COMPUTERS > Networking > Security.
COMPUTERS > Security > General.
TRANSPORTATION > General.
Computer security
Data protection
Risk assessment
Online Access:Texto completo
Table of Contents:
  • Introduction
  • Concepts and definitions
  • VAM methodology and other DoD practices in risk assessment
  • Vulnerability attributes of system objects
  • Direct and indirect security techniques
  • Generating security options for vulnerabilities
  • Automating and executing the methodology: a spreadsheet tool
  • Next steps and discussion
  • Summary and conclusions
  • Appendix: Vulnerability to mitigation map values.

Similar Items