Risk-Based Assessment of the Surety of Information Systems

Abstract

When software is used in safety-critical, security-critical, or mission-critical situations, it is imperative to understand and manage the risks involved. A risk assessment methodology and toolset have been developed which are specific to software systems and address a broad range of risks including security, safety, and correct operation. A unique aspect of this methodology is the use of a modeling technique that captures interactions and tradeoffs among risk mitigators.This paper describes the concepts and components of the methodology and presents its application to example systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jul 01, 1996
Accession Number
ADA400066

Entities

People

  • Gregory D. Wyss
  • Judy J. Lim
  • Martin D. Murphy
  • Roxana M. Jansma
  • Sharon K. Fletcher

Organizations

  • Sandia National Laboratories

Tags

Communities of Interest

  • Biomedical
  • Cyber
  • Energy and Power Technologies
  • Human Systems
  • Weapons Technologies

DTIC Thesaurus Topics

  • Basic Programming Language
  • Computational Science
  • Computer Programming
  • Computer Programs
  • Computers
  • Cybersecurity
  • Failure Mode And Effect Analysis
  • Information Systems
  • Operating Systems
  • Probability
  • Reliability
  • Risk
  • Risk Analysis
  • Risk Management
  • Software Development
  • Spreadsheet Software
  • Vulnerability

Fields of Study

  • Computer science
  • Engineering

Readers

  • Aviation Safety Risk Assessment.
  • Software Engineering.