How to Determine Threat Probabilities Using Ontologies and Bayesian Networks

S. Fenz, T. Neubauer:
"How to Determine Threat Probabilities Using Ontologies and Bayesian Networks";
Vortrag: 5th Annual Workshop on Cyber Security and Information Intelligence Research, Knoxville, TN; 13.04.2009 - 15.04.2009; in:"CSIIRW'09: Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research", ACM New York, Ny, Usa (2009), ISBN: 978-1-60558-518-5; S. 1 - 11.

[ Publication Database ]

Abstract:


The subjective threat probability determination is one of the main reasons for an inadequate information security strategy endangering the organization in performing its mission. To address the problem this research project proposes an ontology- and Bayesian-based approach for determining asset-specific and comprehensible threat probabilities. The elaborated concepts enable risk managers to comprehensibly quantify the current security status of their organization.