• Publications
  • Influence
Model-Driven Risk Analysis - The CORAS Approach
TLDR
The term risk is known from many fields, and we are used to references to contractual risk, economic risk, operational risk, legal risk, security risk, and so forth. Expand
  • 358
  • 44
Why Trust is not Proportional to Risk
TLDR
An analysis and explanation of the exact relationship between risk and trust is presented, and implications of the subjectivity of trust relations are accounted for. Expand
  • 55
  • 4
  • PDF
A Guided Tour of the CORAS Method
TLDR
This chapter presents a guided tour of the CORAS method. Expand
  • 26
  • 4
  • PDF
Semantics for multi-agent only knowing: extended abstract
TLDR
The paper presents a Kripke semantics for a multi-agent generalization of Levesque's logic of "only knowing". Expand
  • 17
  • 4
Model-driven risk analysis of evolving critical infrastructures
TLDR
This paper addresses these challenges by presenting an approach to model-driven security risk analysis of changing and evolving systems. Expand
  • 21
  • 3
  • PDF
Risk Analysis of Changing and Evolving Systems Using CORAS
TLDR
We introduce general techniques and guidelines for managing risk in changing systems, and then instantiate these in the CORAS approach to model-driven risk analysis. Expand
  • 44
  • 2
  • PDF
Mitigating Risk with Cyberinsurance
TLDR
To achieve a proper balance between security investments and acceptable loss, businesses take a mixed approach to risk management. Expand
  • 29
  • 2
The CORAS Language – why it is designed the way it is
TLDR
In this paper we present the most important features of the CORAS language and motivate some of the major design choices we did. Expand
  • 21
  • 2
  • PDF
Evolution of Security Engineering Artifacts: A State of the Art Survey
TLDR
The state of the art on the evolution of security engineering artifacts. Expand
  • 13
  • 1
  • PDF
...
1
2
3
4
5
...