TAXONOMIES OF THREATS AND VULNERABILITIES

Authors
  1. Jones, G.
  2. Bonyun, D.
Corporate Authors
Sharp (I P) Associates Ltd, Ottawa ONT (CAN);Chief of Research and Development, Ottawa ONT (CAN) Director of Research and Development Communications and Space
Abstract
The purpose of this report to define taxonomies of threats and vulnerabilities to be used when the I.P. Sharp Associates Limited model for Threat Analysis (in Appendix A) is expanded and revised to be able to accommodate a very dynamic environment. The goal of threat analysis in a dynamic environment (in particular, one which is rapidly changing) is to propose mechanisms for reducing the undesirable impact of potential events on the assets of an organization. The environment consists of two distinct parts: the internal environment (the assets of the organization) and the external environment (malicious agents and natural phenomena capable of harming the assets). We define an event as the impact of one or more entities on one or more external assets, resulting in a loss to the organization that owns the assets. We define a risk to be a potential event. Hence, the first step in achieving the goal of threat analysis in a dynamic environment is to identify the risks.
Report Number
TR-87-5418-04 — Technical Report
Date of publication
15 Nov 1987
Number of Pages
108
DSTKIM No
91-00134
CANDIS No
67355
Format(s):
Hardcopy;Originator's fiche received by DSIS

Permanent link

Document 1 of 1

Date modified: