License: Creative Commons Attribution 3.0 Unported license (CC BY 3.0)
When quoting this document, please refer to the following
DOI: 10.4230/DagRep.6.11.63
URN: urn:nbn:de:0030-drops-70390
URL: http://dagstuhl.sunsite.rwth-aachen.de/volltexte/2017/7039/
Moore, Tyler W. ;
Probst, Christian W. ;
Rannenberg, Kai ;
van Eeten, Michel
Weitere Beteiligte (Hrsg. etc.): Tyler W. Moore and Christian W. Probst and Kai Rannenberg and Michel van Eeten
Assessing ICT Security Risks in Socio-Technical Systems (Dagstuhl Seminar 16461)
Abstract
This report documents the program and the outcomes of Dagstuhl Seminar 16461 "Assessing ICT Security Risks in Socio-Technical Systems". As we progress from classic mechanical or electrical production systems, over ICT systems, to socio-technical systems, risk assessment becomes increasingly complex and difficult. Risk assessment for traditional engineering systems assumes the systems to be deterministic. In non-deterministic systems, standard procedure is to fix those factors that are not deterministic. These techniques do not scale to ICT systems where many risks are hard to trace due to the immaterial
nature of information. Beyond ICT systems, socio-technical systems also contain human actors as integral parts of the system. In such socio-technical systems there may occur unforeseen interactions between the system, the environment, and the human actors, especially insiders. Assessing ICT security risks for socio-technical systems and their economic environment requires methods and tools that integrate relevant socio-technical security metrics. In this seminar we investigated systematic methods and tools to estimate those ICT security risks in socio-technical systems and their economic environment. In particular, we searched for novel security risk assessment methods that integrate different types of socio-technical security metrics.
BibTeX - Entry
@Article{moore_et_al:DR:2017:7039,
author = {Tyler W. Moore and Christian W. Probst and Kai Rannenberg and Michel van Eeten},
title = {{Assessing ICT Security Risks in Socio-Technical Systems (Dagstuhl Seminar 16461)}},
pages = {63--89},
journal = {Dagstuhl Reports},
ISSN = {2192-5283},
year = {2017},
volume = {6},
number = {11},
editor = {Tyler W. Moore and Christian W. Probst and Kai Rannenberg and Michel van Eeten},
publisher = {Schloss Dagstuhl--Leibniz-Zentrum fuer Informatik},
address = {Dagstuhl, Germany},
URL = {http://drops.dagstuhl.de/opus/volltexte/2017/7039},
URN = {urn:nbn:de:0030-drops-70390},
doi = {10.4230/DagRep.6.11.63},
annote = {Keywords: economics of risk assessment, human factor, return on security investment, security risk management, socio-technical security}
}
Keywords: |
|
economics of risk assessment, human factor, return on security investment, security risk management, socio-technical security |
Collection: |
|
Dagstuhl Reports, Volume 6, Issue 11 |
Issue Date: |
|
2017 |
Date of publication: |
|
07.04.2017 |