SEARCH RESULTS
 
Showing 1-10 of 43 records
 
Expand article

Communicating about risk - part 2

The Article has images
2008-05-20 16:22:24 by JonesJ in RiskAnalys.is
...likelihood Its common to see charts similar to the one below used to communicate risk. On one axis we have Impact, and on the other we have Likelihood. Well save a discussion regarding Impact for another post, but in this post Id like to point out a couple of subtle but important limitations with the term likelihood Likelihood connotes the...
 
Tags: risk, managements risk tolerance, enterprise risk tolerance, risk tolerance, likelihood, risk analysis, likelihood connotes, lines, likelihood statement refer
 
 
 
 
Expand article

Is Risk-Based Security Really Possible?

2007-07-26 20:42:00 by Bryan in practical risk management
 
...Likelihood and Impact. But literal use of ALE for information security decisions is problematic to say the least The problem with ALE is that the numbers we plug into that formula are so baseless that the resulting calculation has no credibility. We probably inherited this simple conceptual model at some point from the insurance industry,...
 
Tags: security, information security, information security decisions, security management, security breach, breach, risk, wrong, ale hopelessly wrong
 
 
 
 
Expand article

Why Risk Management Doesnt Work (?!)

2008-10-08 17:15:14 by Alex in RiskAnalys.is
 
...likelihood is different for different people and so you cant use the same likelihood across different industries Distilled through the lens of FAIR different threat communities may be applicable based on Probability of Action factors which include: Value, Level of Effort and Risk (of Getting Caught Or, even further distilled and in the words...
 
Tags: risk management, information, information risk management, risk, poor risk management, information security risk, reduce risk, risk analysis, cool report
 
 
 
 
Expand article

Stolen laptop contained Centocor speaker-consultant information

The Article has images
2008-01-29 11:08:47 by Evan Francen in The Breach Blog
...likelihood of such misuse is low Evan] I think the likelihood is higher than it would be in the case most "run of the mill" laptop thefts. In this case, the suspect is a contracted employee of the IT vendor which implies that this person may have IT skills we have arranged for a credit-monitoring product at no cost to you, which also...
 
Tags: centocor, information, evan centocor, evan, time centocor, centocor facilities, facilities, centocor laptops, laptops
 
 
 
 
Expand article

Modelling Financial Risk Seminar

2006-08-01 02:13:00 by Jomni in Risk Management Quant
 
...Likelihood Estimation Course Schedule Thursday 17 August 2006 - 5:30pm to 8:30pm Friday 18 August 2006 - 5:30pm to 8:30pm Saturday 19 August 2006 - 9:00am to 5:00pm Sunday 20 August 2006 - 9:00am to 5:00pm Fees SGD 1785 (includes GST) - per person SGD 1575 (includes GST) - per person from the same entity Venue School of Financial Services and...
 
Tags: risk, risk management professionals, risk management, risk measurement, liquidity risk, model risk, singapore conference hall, singapore, initial topics
 
 
 
 
Expand article

Duke School of Law breach affects 3,200

The Article has images
2007-12-06 11:37:20 by Evan Francen in The Breach Blog
...likelihood of increased spam Commentary This has to be one of the best incident disclosure announcements I have ever seen in terms of depth. The explanation of what occurred is clear, Duke's response is clear, and what they plan to do is clear. I am impressed Now, what I am not impressed about is the decision to store confidential...
 
Tags: school, duke school, breach, security, comfyllama social security, complete, breach description, complete security scan, security breach
 
 
 
 
Expand article

Common Criteria and answering the question 'Is it Safe'

2007-12-20 16:57:00 by sdl in The Security Development Lifecycle
 
...likelihood of security vulnerabilities in software At a very fundamental level, when someone in either the private sector or from a government agency considers purchasing or using a software product, one of the questions that may come up is Is it Safe? (Apologies for the lame and over-used Marathon Man movie reference ) . I choose this...
 
Tags: criteria, fails, common criteria fails, common criteria, common criteria arguably, common, arguably, arguably deficient, security
 
 
 
 
Expand article

Hard drive stolen from New Mexico State University was encrypted

The Article has images
2008-01-07 09:50:57 by Evan Francen in The Breach Blog
...likelihood the data is safe Past Breaches Unknown
 
Tags: hard drive, external hard drive, information, personal information, employee information, computer hard drive, employee, employee hired, special events
 
 
 
 
Expand article

Diminutive Worm Contest Wrapup

2008-01-10 23:26:37 by RSnake in ha.ckers.org web application security lab
 
...likelihood of worm propagation across their websites. This should put to rest the nay sayers who thought nothing good could come of this contest. The paper is not for everyone - its pretty complex (as worms tend to be), but I think the people who have the problem will understand how to use it in their own environments That said, there is at...
 
Tags: worm, stop worm propagation, worm propagation, scale worm defense, huge congrats, giorgio maone, byte worm, cross browser compatibility, companies devise plans
 
 
 
 
Expand article

My Open Wireless Network

2008-01-15 03:33:22 by schneier in Schneier on Security
 
...likelihood of you being caught is very similar to that of being hit by an asteroid I'm also unmoved by those who say I'm putting my own data at risk, because hackers might park in front of my house, log on to my open network and eavesdrop on my internet traffic or break into my computers. This is true, but my computers are much more at risk...