From the Resource to the Business Process Risk Level

被引:0
|
作者
Fenz, S. [1 ,2 ]
机构
[1] Vienna Univ Technol, Vienna, Austria
[2] SBA Res, Vienna, Austria
来源
PROCEEDINGS OF THE SOUTH AFRICAN INFORMATION SECURITY MULTI-CONFERENCE | 2010年
关键词
Security; Information security risk management; Business process analysis;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Although a variety of information security risk management (ISRM) approaches have been proposed, well-founded methods that provide an answer to the following question are still missing: How can the risk level of a business process be determined by taking the risk levels of the involved resources into account? This paper presents our research results regarding resource-based risk analysis methods in order to assign realistic figures concerning the business process risk level. With regard to business processes the research results allow the (semiautomatic) reasoning of the current security status of an organization. In this way we can support decision makers in selecting appropriate controls to reduce risks to an acceptable level; and also in making a reasonable trade-off between investments into security and the need for protection.
引用
收藏
页码:100 / 109
页数:10
相关论文
共 50 条
  • [31] Research on Knowledge Resource Allocation Oriented Business Process Modeling
    Chen, Lei
    Zhan, Hongfei
    Yu, Junhe
    Jiang, Zhongren
    Lei, Chenjian
    ADVANCES IN ENGINEERING DESIGN AND OPTIMIZATION III, PTS 1 AND 2, 2012, 201-202 : 935 - 938
  • [32] Reinforcement learning based resource allocation in business process management
    Huang, Zhengxing
    van der Aalst, W. M. P.
    Lu, Xudong
    Duan, Huilong
    DATA & KNOWLEDGE ENGINEERING, 2011, 70 (01) : 127 - 145
  • [33] Business process study simulation for resource management in an emergency department
    Poomkothammal, Velusamy
    CONSUMER-CENTERED COMPUTER-SUPPPORTED CARE FOR HEALTHY PEOPLE, 2006, 122 : 1041 - +
  • [34] Towards Resource-aware Business Process Development in the Cloud
    Hachicha, Emna
    Gaaloul, Walid
    2015 IEEE 29TH INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS (IEEE AINA 2015), 2015, : 761 - 768
  • [35] Optimizing Resource Utilization by Combining Running Business Process Instances
    Natschlaeger, Christine
    Boegl, Andreas
    Geist, Verena
    SERVICE-ORIENTED COMPUTING - ICSOC 2014 WORKSHOPS, 2015, 8954 : 120 - 126
  • [36] Business Process Driven Matching of Partner Profiles to Resource Requirements
    Herfurth, Maik
    Schuster, Thomas
    Weiss, Peter
    ADAPTATION AND VALUE CREATING COLLABORATIVE NETWORKS, 2011, 362 : 456 - +
  • [37] Performance Measurement in Business Process, Workflow and Human Resource Management
    Glykas, Michael
    KNOWLEDGE AND PROCESS MANAGEMENT, 2011, 18 (04) : 241 - 265
  • [38] Resource Management for Business Process Scheduling in the Presence of Availability Constraints
    Xu, Jiajie
    Liu, Chengfei
    Zhao, Xiaohui
    Yongchareon, Sira
    Ding, Zhiming
    ACM TRANSACTIONS ON MANAGEMENT INFORMATION SYSTEMS, 2016, 7 (03)
  • [39] Quantitative Effects of Advanced Resource Constructs in Business Process Simulation
    Peters, Sander
    Dijkman, Remco
    Grefen, Paul
    2018 IEEE 22ND INTERNATIONAL ENTERPRISE DISTRIBUTED OBJECT COMPUTING CONFERENCE (EDOC 2018), 2018, : 115 - 122
  • [40] Business Process Design by reusing Business Process fragments from the cloud
    Nacer, Amina Ahmed
    Goettelmann, Elio
    Youcef, Samir
    Tari, Abdelkamel
    Godart, Claude
    2015 IEEE 8TH INTERNATIONAL CONFERENCE ON SERVICE-ORIENTED COMPUTING AND APPLICATIONS (SOCA), 2015, : 193 - 200
12345