Abstract

In actual life scenarios, the components of the big risk picture are interdependent rather than purely independent. Moreover, the quantitative risk measurements are needed to objectively compare alternatives and calculate monetary figures to budget for reducing or minimizing the existing risk. A detailed treatment of the proposed security-meter, a quantitative risk assessment technique, has been recently studied and published when vulnerabilities were assumed to be all independent and disjoint of each other, and so were the ensuing threats. However, when these vulnerabilities of the quantitative security risk assessment are not perfect; that is they are non-independent and non-disjoint, then a new probabilistic approach needs to replace that of the special case of independence or disjoint outcomes

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call