| dc.creator | Olsina Santos, Luis Antonio | |
| dc.creator | Pesotskaya, Elena | |
| dc.creator | Dieser, Alexander | |
| dc.creator | Covella, Guillermo Juan | |
| dc.date | 2013-09 | |
| dc.date | 2013 | |
| dc.date | 2019-06-14T11:44:47Z | |
| dc.identifier | http://sedici.unlp.edu.ar/handle/10915/76486 | |
| dc.identifier | http://42jaiio.sadio.org.ar/proceedings/simposios/Trabajos/ASSE/13.pdf | |
| dc.identifier | issn:1850-2792 | |
| dc.description | An IT security vulnerability can be considered as an inherent weakness in a target system that could be exploited by a threat source. The underlying hypothesis in our proposal is that each identified attribute associated with the target entity to be controlled should show the highest quality satisfaction level as an elementary indicator. The higher the quality indicator value achieved per each attribute, the lower the vulnerability indicator value and therefore the potential impact from the risk standpoint. In the present work, we discuss the added value of supporting the IT security and risk assessment areas with measurement and evaluation (M&E) methods and strategy, which are based on metrics and indicators. Also we illustrate excerpts of an M&E case study for characteristics and attributes of Security, and their potential risk assessment. | |
| dc.description | Sociedad Argentina de Informática e Investigación Operativa (SADIO) | |
| dc.format | application/pdf | |
| dc.format | 168-182 | |
| dc.language | en | |
| dc.rights | http://creativecommons.org/licenses/by-nd/3.0/ | |
| dc.rights | Creative Commons Attribution-NoDerivs 3.0 Unported (CC BY-ND 3.0) | |
| dc.subject | Ciencias Informáticas | |
| dc.subject | security vulnerability | |
| dc.subject | quality indicator | |
| dc.subject | Measurements | |
| dc.subject | Evaluation/methodology | |
| dc.title | Bridging the Gap between Security/Risk and Quality | |
| dc.type | Objeto de conferencia | |
| dc.type | Objeto de conferencia | |
