Attack Tree Based Information Security Risk Assessment Method Integrating Enterprise Objectives with Vulnerabilities
Bugra Karabey and Nazife Baykal
Middle East Technical University, Informatics Institute, Inonu Bulvari, 06531, Ankara, Turkey
Middle East Technical University, Informatics Institute, Inonu Bulvari, 06531, Ankara, Turkey
Abstract: In order to perform the analysis and mitigation efforts related with the Information Security risks there exists quantitative and qualitative approaches, but the most critical shortcoming of these methods is the fact that the outcome mainly addresses the needs and priorities of the technical community rather than the management. For the enterprise management, this information is essentially required as a decision making aid for the asset allocation and the prioritization of mitigation efforts. So ideally the outcome of an information security risk method must be in synchronization with the enterprise objectives to act as a useful decision tool for the management. Also in the modelling of the threat domain, attack trees are frequently utilized. However the execution of attack tree modelling is costly from the effort and timing requirements and also has inherent scalability issues. So within this article our design-science research based work on an information security risk assessment method that addresses these two issues of enterprise objective inclusion and model scalability will be outlined.
Keywords: Enterprise information security, enterprise modelling, risk assessment, risk assessment method, resource based view, attack trees, risk management.
Received May 4, 2011; accepted July 28, 2011