Enterprise Architecture-Based Risk and Security Modelling and Analysis

被引：6

作者：

Jonkers, Henk ^{[1
]}

Quartel, Dick A. C. ^{[1
]}

机构：

[1] BiZZdesign, POB 321, NL-7500 AN Enschede, Netherlands

来源：

GRAPHICAL MODELS FOR SECURITY, GRAMSEC 2016 | 2016年 / 9987卷

关键词：

Enterprise architecture; Archimate; Risk and security modelling; Risk analysis;

D O I：

10.1007/978-3-319-46263-9_6

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

The growing complexity of organizations and the increasing number of sophisticated cyber attacks asks for a systematic and integral approach to Enterprise Risk and Security Management (ERSM). As enterprise architecture offers the necessary integral perspective, including the business and IT aspects as well as the business motivation, it seems natural to integrate risk and security aspects in the enterprise architecture. In this paper we show how the ArchiMate standard for enterprise architecture modelling can be used to support risk and security modelling and analysis throughout the ERSM cycle, covering both risk assessment and security deployment.

引用

页码：94 / 101

页数：8

共 50 条

[31] An architecture framework for enterprise IT service availability analysis [J].

Ulrik Franke ;

Pontus Johnson ;

Johan König .

Software & Systems Modeling, 2014, 13 :1417-1445

[32] An architecture framework for enterprise IT service availability analysis [J].

Franke, Ulrik ;

Johnson, Pontus ;

Konig, Johan .

SOFTWARE AND SYSTEMS MODELING, 2014, 13 (04) :1417-1445

[33] Towards an Integration of Information Security Management, Risk Management and Enterprise Architecture Management - a Literature Review [J].

Diefenbach, Thomas ;

Lucke, Carsten ;

Lechner, Ulrike .

11TH IEEE INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGY AND SCIENCE (CLOUDCOM 2019), 2019, :326-333

[34] Formalizing analysis of enterprise architecture [J].

Johnson, Pontus ;

Nordstrom, Lars ;

Lagerstrom, Robert .

ENTERPRISE INTEROPERABILITY: NEW CHALLENGES AND APPROACHES, 2007, :35-+

[35] Enterprise Architecture Modifiability Analysis [J].

Busch, Norbert Rudolf ;

Zalewski, Andrzej .

TOWARDS A SYNERGISTIC COMBINATION OF RESEARCH AND PRACTICE IN SOFTWARE ENGINEERING, 2018, 733 :119-134

[36] Application and project portfolio valuation using enterprise architecture and business requirements modelling [J].

Quartel, Dick ;

Steen, Maarten W. A. ;

Lankhorst, Marc M. .

ENTERPRISE INFORMATION SYSTEMS, 2012, 6 (02) :189-213

[37] Extending enterprise architecture modelling with business goals and requirements [J].

Engelsman, Wilco ;

Quartel, Dick ;

Jonkers, Henk ;

van Sinderen, Marten .

ENTERPRISE INFORMATION SYSTEMS, 2011, 5 (01) :9-36

[38] PRIMROSe: A Graph-Based Approach for Enterprise Architecture Analysis [J].

Naranjo, David ;

Sanchez, Mario ;

Villalobos, Jorge .

ENTERPRISE INFORMATION SYSTEMS, ICEIS 2014, 2015, 227 :434-452

[39] MISALIGNMENT SYMPTOM ANALYSIS BASED ON ENTERPRISE ARCHITECTURE MODEL ASSESSMENT [J].

Ori, Dora .

IADIS-INTERNATIONAL JOURNAL ON COMPUTER SCIENCE AND INFORMATION SYSTEMS, 2014, 9 (02) :146-158

[40] MISALIGNMENT SYMPTOM ANALYSIS BASED ON ENTERPRISE ARCHITECTURE MODEL ASSESSMENT [J].

Ori, Dora .

PROCEEDINGS OF THE INTERNATIONAL CONFERENCES ON ICT, SOCIETY AND HUMAN BEINGS 2014, WEB BASED COMMUNITIES AND SOCIAL MEDIA 2014, E-COMMERCE 2014, INFORMATION SYSTEMS POST-IMPLEMENTATION AND CHANGE MANAGEMENT 2014 AND E-HEALTH 2014, 2014, :191-198

← 1 2 3 4 5 →