Enterprise Architecture-Based Risk and Security Modelling and Analysis

被引:6
作者
Jonkers, Henk [1 ]
Quartel, Dick A. C. [1 ]
机构
[1] BiZZdesign, POB 321, NL-7500 AN Enschede, Netherlands
来源
GRAPHICAL MODELS FOR SECURITY, GRAMSEC 2016 | 2016年 / 9987卷
关键词
Enterprise architecture; Archimate; Risk and security modelling; Risk analysis;
D O I
10.1007/978-3-319-46263-9_6
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
The growing complexity of organizations and the increasing number of sophisticated cyber attacks asks for a systematic and integral approach to Enterprise Risk and Security Management (ERSM). As enterprise architecture offers the necessary integral perspective, including the business and IT aspects as well as the business motivation, it seems natural to integrate risk and security aspects in the enterprise architecture. In this paper we show how the ArchiMate standard for enterprise architecture modelling can be used to support risk and security modelling and analysis throughout the ERSM cycle, covering both risk assessment and security deployment.
引用
收藏
页码:94 / 101
页数:8
相关论文
共 50 条
[21]   Agile enterprise architecture modelling: Evaluating the applicability and integration of six modelling standards [J].
Gill, Asif Qumer .
INFORMATION AND SOFTWARE TECHNOLOGY, 2015, 67 :196-206
[22]   Enterprise architecture modelling - the issue of integration [J].
Lankhorst, MM .
ADVANCED ENGINEERING INFORMATICS, 2004, 18 (04) :205-216
[23]   Business strategy modelling based on enterprise architecture: a state of the art review [J].
Kitsios, Fotis ;
Kamariotou, Maria .
BUSINESS PROCESS MANAGEMENT JOURNAL, 2019, 25 (04) :606-624
[24]   A decision-making support system for Enterprise Architecture Modelling [J].
Perez-Castillo, Ricardo ;
Ruiz, Francisco ;
Piattini, Mario .
DECISION SUPPORT SYSTEMS, 2020, 131
[25]   Using Ontologies for Enterprise Architecture Analysis [J].
Antunes, Goncalo ;
Bakhshandeh, Marzieh ;
Mayer, Rudolf ;
Borbinha, Jose ;
Caetano, Artur .
17TH IEEE INTERNATIONAL ENTERPRISE DISTRIBUTED OBJECT COMPUTING CONFERENCE WORKSHOPS (EDOCW 2013), 2013, :361-368
[26]   Lightweight Metrics for Enterprise Architecture Analysis [J].
Singh, Prince M. ;
van Sinderen, Marten J. .
BUSINESS INFORMATION SYSTEMS WORKSHOPS, BIS 2015, 2015, 228 :113-125
[27]   A Risk-Based Approach Supporting Enterprise Architecture Evolution [J].
Gaaloul, Khaled ;
Guerreiro, Sergio .
PRACTICE OF ENTERPRISE MODELING, POEM 2015, 2015, 235 :43-56
[28]   Enterprise Architecture Modeling Based on Cloud Computing Security Ontology as a Reference Model [J].
Janulevicius, Justinas ;
Marozas, Leonardas ;
Cenys, Antanas ;
Goranin, Nikolaj ;
Ramanauskaite, Simona .
2017 OPEN CONFERENCE OF ELECTRICAL, ELECTRONIC AND INFORMATION SCIENCES (ESTREAM), 2017,
[29]   Enterprise Architecture Modellingα Purpose, requirements and language [J].
Proper, Henderik A. ;
Bjekovic, Marija ;
van Gils, Bas ;
de Kinderen, Sybren .
2018 IEEE 22ND INTERNATIONAL ENTERPRISE DISTRIBUTED OBJECT COMPUTING CONFERENCE WORKSHOPS (EDOCW 2018), 2018, :162-169
[30]   Resilience analysis and design for mobility-as-a-service based on enterprise architecture modeling [J].
Zhou, Zhengshu ;
Matsubara, Yutaka ;
Takada, Hiroaki .
RELIABILITY ENGINEERING & SYSTEM SAFETY, 2023, 229
12345