Managing Information Security Risks: The OCTAVE Approach

Christopher Alberts, Audrey Dorofee

  • 出版商: Addison-Wesley Professional
  • 出版日期: 2002-07-19
  • 售價: $2,921
  • 貴賓價: 9.5$2,775
  • 語言: 英文
  • 頁數: 512
  • 裝訂: Hardcover
  • ISBN: 0321118863
  • ISBN-13: 9780321118868
  • 相關分類: 資訊安全

下單後立即進貨 (2~3週)

商品描述

Table of Contents

List of Figures.
List of Tables.
Preface.
Acknowledgments.

I. INTRODUCTION.

1. Managing Information Security Risks.
2. Principles and Attributes of Information Security Risk Evaluations.

II. THE OCTAVE METHOD.

3. Introduction to the OCTAVE Method.
4. Preparing for OCTAVE.
5. Identifying Organizational Knowledge(Processes 1 to 3).
6. Creating Threat Profiles (Process 4).
7. Identifying Key Components (Process 5).
8. Evaluating Selected Components (Process 6).
9. Conducting the Risk Analysis (Process 7).
10. Developing a Protection Strategy—Workshop A (Process 8A).
11. Developing a Protection Strategy--Workshop B (Process 8B).

III. VARIATIONS ON THE OCTAVE APPROACH.


12. An Introduction to Tailoring OCTAVE.
13. Practical Applications.
14. Information Security Risk Management.
Glossary.
Bibliography.
Appendix A. Case Scenario for the OCTAVE Method.
Appendix B. Worksheets.
Appendix C. Catalog of Practices.
About the Authors.