Abstract
Constant changes in the structure of the organization and the working processes have forces security staff to reclassify and re-evaluate information and information systems too often. In this paper we present one solution to make it possible to use the previous data as much as possible and recalculate the evaluation results automatically.
The solution is based on piercing the processes into parts of the block diagram and then analyzing the classification of the each block. This procedure is continued from top to down until there is no remarkable processes left. After the top-down phase has been reached its end a second phase is started from bottom to top. In this phase the reliability of each block is analyzed and the results of one level is combined. This result is then passed to the upper level and this procedure may continue until the top is reached.
In every level it is possible to have iterative loops if the requirements are not met. It is usually easier to add parallel processes for assurance than improve the reliability of the single component.
Chapter PDF
Similar content being viewed by others
Key words
References
Herrmann D.S: ”Software Safety and Reliability”, IEEE Computer Society Press, USA 1999, ISBN 0-7695-0299-7
Jønsang, A., Knapskog, S.J.: ”A Metric for trusted systems”, Proceedings of the IFIP SEC 1998, Chapman & Hall, UK 1998
Kapur P.K., Garg R.B, Kumar S: “Contributions to Hardware and Software Reliability”, World Scientific Publishing Co. Pte. Ltd, Singapore 1999, ISBN 981-02-3751-0
Kiountouzis, E.A., Kokolakis, S.A.: ”An analyst’s view of IS security”, Information Systems Security (IFIP SEC 1996), Chapman & Hall, UK 1996, ISBN 0 412 78120 4 [Tryfonas] Tryfonas T, Gritzalis D, Kokolakis S: “A Qualitative Approach to Information Availability”, Information Security for Global Information Infrastructures (IFIP SEC 2000), Kluwer Academic Publisher, the Netherlands 2000, ISBN 0 7923 7914 4
Leveson N.G: “Safeware-System Safety and Computers”, Addison-Wesley Publishing Company, USA 1995, ISBN 0-201-11972-2
Lyu M: “Handbook of software reliability engineering”, McGraw-Hill, 1996
Smith, E., Eloff, J.H.P: “Modelling risks in health-care institution”, Proceedings of the IFIP SEC 1998, Chapman & Hall, UK 1998
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2001 IFIP International Federation for Information Processing
About this paper
Cite this paper
Virtanen, T. (2001). Design Criteria to Classified Information Systems Numerically. In: Dupuy, M., Paradinas, P. (eds) Trusted Information. SEC 2001. IFIP International Federation for Information Processing, vol 65. Springer, Boston, MA. https://doi.org/10.1007/0-306-46998-7_22
Download citation
DOI: https://doi.org/10.1007/0-306-46998-7_22
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-7923-7389-6
Online ISBN: 978-0-306-46998-5
eBook Packages: Springer Book Archive