Risk assessment methodology based on the NISTIR 7628 guidelines

Robert K. Abercrombie, Frederick T. Sheldon, Katie R. Hauser, Margaret W. Lantz, Ali Mili

Research output: Chapter in Book/Report/Conference proceedingConference contribution

16 Scopus citations

Abstract

Earlier work describes computational models of critical infrastructure that allow an analyst to estimate the security of a system in terms of the impact of loss per stakeholder resulting from security breakdowns. Here, we consider how to identify, monitor and estimate risk impact and probability for different smart grid stakeholders. Our constructive method leverages currently available standards and defined failure scenarios. We utilize the National Institute of Standards and Technology (NIST) Interagency or Internal Reports (NISTIR) 7628 as a basis to apply Cyberspace Security Econometrics system (CSES) for comparing design principles and courses of action in making security-related decisions.

Original languageEnglish (US)
Title of host publicationProceedings of the 46th Annual Hawaii International Conference on System Sciences, HICSS 2013
Pages1802-1811
Number of pages10
DOIs
StatePublished - Apr 3 2013
Event46th Annual Hawaii International Conference on System Sciences, HICSS 2013 - Wailea, Maui, HI, United States
Duration: Jan 7 2013Jan 10 2013

Publication series

NameProceedings of the Annual Hawaii International Conference on System Sciences
ISSN (Print)1530-1605

Other

Other46th Annual Hawaii International Conference on System Sciences, HICSS 2013
Country/TerritoryUnited States
CityWailea, Maui, HI
Period1/7/131/10/13

All Science Journal Classification (ASJC) codes

  • Engineering(all)

Fingerprint

Dive into the research topics of 'Risk assessment methodology based on the NISTIR 7628 guidelines'. Together they form a unique fingerprint.

Cite this