Abstract
Dynamic risk assessment refers to a risk management framework where frequent updates of risk evaluation information are used to evaluate risk exposure, as close as possible to real-time. In this paper, we present the incident object description exchange format extended model for dynamic risk assessment. This format attempts to overcome the absence of integration and real-time communication between security systems and risk assessment tools. Our model is based on the incident object definition exchange format, which is commonly used in the computer security incident response teams community. This data model aims to facilitate a global vision of information systems risk by supplying real-time security events data to risk assessment tools based on renowned methodologies. We present a proof-of-concept scenario to demonstrate the usefulness of this integration and the proposed data model, and discuss the expected improvements.
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call