ITB8811 Foundations of Information Security Risk Analysis

Allikas: Kursused
Redaktsioon seisuga 19. november 2019, kell 08:03 kasutajalt Aleksandr (arutelu | kaastöö) (→‎Lectures)
Mine navigeerimisribale Mine otsikasti

Course information

Code: ITB8811 Foundations of Information Security Risk Analysis

ECTS: 6

Assessment form: examination

Instructor: Aleksandr Lenin, email: aleksandr dot lenin at taltech dot ee

Schedule

Tue 10:00 - 11:30 SCI-028 Lecture

Tue 11:45 - 12:15 SCI-028 Practice

Announcements

  • Examination dates:
  1. Dec 17th 2019 10AM SCI-028
  2. TBA (January 2020)
  3. TBA (January 2020)
  • Consultation times:
  1. Dec 10th 2019 10AM SCI-028
  2. TBA (January 2020)
  3. TBA (January 2020)

Lectures

  1. Introduction
  2. Security Risk
  3. Financial Risk
  4. Qualitative Risk Assessment
  5. Factor Analysis of Information Risk (FAIR)
  6. Risk Management
  7. Reliability and Availability and some tasks to practice
  8. Foundations of Attack Trees
  9. Attack Tree Survey
  10. Quantitative Questions on Attack-Defense Trees
  11. | Rational Choice Of Security Measures via Multi-Parameter Attack Trees
  12. | Efficient Semantics of Parallel and Serial Models of Attack Trees

Assignments

  1. Think of an enterprise, a process, a system, or a product and perform qualitative risk analysis using the FAIR framework by filling in the following FAIR Template
  2. Perform cost analysis of human originated threats in your case studies. Use the tool ADTool for modeling, export attack trees in XML format and submit.
Pärit leheküljelt "http://courses.cs.taltech.ee/w/index.php?title=ITB8811_Foundations_of_Information_Security_Risk_Analysis&oldid=8922"