464
views
0
recommends
+1 Recommend
1 collections
    0
    shares
      • Record: found
      • Abstract: found
      • Conference Proceedings: found
      Is Open Access

      Model based Security Risk Analysis for Web Applications: The CORAS approach

      , , ,

      EuroWeb 2002 Conference (EW)

      EuroWeb

      17-18 December 2002

      Read this article at

      Bookmark
          There is no author summary for this article yet. Authors can add summaries to their articles on ScienceOpen to make them more accessible to a non-specialist audience.

          Abstract

          Security evaluation and security assurance are important aspects of trust in e-business. CORAS is a European project which is developing a tool-supported framework for precise, unambiguous, and efficient risk assessment of security critical systems. The framework is obtained through adapting, refining, extending, and combining methods for risk analysis of critical systems and semiformal modelling methods. In this paper we provide an overview of the CORAS framework for model-based risk assessment, emphasising its application on Webenabled B2C e-commerce services and the meta-data based deployment model underpinning the CORAS extensible platform for tool inclusion.

          Related collections

          Most cited references 2

          • Record: found
          • Abstract: found
          • Article: not found

          A STATE-OF-THE-ART REVIEW OF FMEA/FMECA

          The Failure Mode and Effects Analysis (FMEA) documents single failures of a system, by identifying the failure modes, and the causes and effects of each potential failure mode on system service and defining appropriate detection procedures and corrective actions. When extended by Criticality Analysis procedure (CA) for failure modes classification, it is known as Failure Mode Effects and Criticality Analysis (FMECA). The present paper presents a literature review of FME(C)A, covering the following aspects: description and review of the basic principles of FME(C)A, types, enhancement of the method, automation and available computer codes, combination with other techniques and specific applications. We conclude with a discussion of various issues raised as a result of the review.
            Bookmark
            • Record: found
            • Abstract: not found
            • Article: not found

            A Reliability Model for Systems with Markov Structure

             B Littlewood (1975)
              Bookmark

              Author and article information

              Contributors
              Conference
              December 2002
              December 2002
              : 1-13
              Affiliations
              Central Laboratory of the Research Councils (CLRC-RAL), UK.
              Intracom S.A, Greece.
              SINTEF Group, Norway.
              Article
              10.14236/ewic/EW2002.6
              © T. Dimitrakos et al. Published by BCS Learning and Development Ltd. EuroWeb 2002 Conference

              This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

              EuroWeb 2002 Conference
              EW
              St Anne’s College, Oxford, UK
              17-18 December 2002
              Electronic Workshops in Computing (eWiC)
              EuroWeb
              Product
              Product Information: 1477-9358BCS Learning & Development
              Self URI (journal page): https://ewic.bcs.org/
              Categories
              Electronic Workshops in Computing

              Comments

              Comment on this article