Modular analysis and modelling of risk scenarios with dependencies

Journal of Systems and Software

Volumn 83, Issue 10, 2010, Pages 1995-2013

  Brændeland, Gyrd ^a,b   Refsdal, Atle ^a   Stølen, Ketil ^a,b  

^a SINTEF ICT   (Norway)

^b UNIVERSITY OF OSLO   (Norway)

Author keywords

Critical infrastructure; Dependency; Modular risk analysis; Risk scenario; Threat modelling

Indexed keywords

CRITICAL INFRASTRUCTURE; DEPENDENCY; MODULAR RISK ANALYSIS; RISK SCENARIO; THREAT MODELLING;

ELECTRIC POWER SYSTEMS; PUBLIC WORKS; RISK ASSESSMENT; RISK PERCEPTION;

RISK ANALYSIS;

EID: 77956063392     PISSN: 01641212     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.jss.2010.05.069     Document Type: Article

References (38)

1. M. Abadi, and L. Lamport Conjoining specifications ACM Transactions on Programming Languages and Systems 17 3 1995 507 534
2. Bengtsson, J., Hallberg, J., Hunstad, A., Lundholm, K., 2009. Tests of methods for information security assessment. Tech. Re FOI-R-2901-SE. Swedish Defence Research Agency.
3. A. Bouti, and D.A. Kadi A state-of-the-art review of FMEA/FMECA International Journal of Reliability, Quality and Safety Engineering 1 4 1994 515 543
4. E. Charniak Bayesian networks without tears: making Bayesian networks more accessible to the probabilistically unsophisticated AI Magazine 12 4 1991 50 63
5. Dahl, H.E.I., Hogganvik, I., Stølen, K., 2007. Structured semantics for the CORAS security risk modelling language. Tech. Rep. A970. SINTEF ICT.
6. Doorman, G., Kjølle, G., Uhlen, K., Huse, E.S., Flatbø, N., 2004. Vulnerability of the nordic power system. Tech. Rep. A5962. SINTEF Energy Research.
7. R.M. Dudley Real Analysis and Probability 2002 Cambridge Studies in Advanced Mathematics Cambridge ISBN 0-521-00754-2
8. Fenton, N., Neil, M., 2004. Combining evidence in risk analysis using Bayesian networks. Agena White Paper W0704/01. Agena.
9. N.E. Fenton, P. Krause, and M. Neil Software measurement: uncertainty and causal modeling IEEE Software 19 4 2002 116 122
10. Flentge, F., 2006. Project description, Tech. Rep. D 4.4.5. Integrated Risk Reduction of Information-based Infrastructure Systems (IRRIS) and Fraunhofer-Institut Autonome Intelligente Systeme.
11. H. Giese, and M. Tichy Component-based hazard analysis: optimal designs, product lines, and online-reconfiguration Proceedings of the 25th International Conference on Computer Safety, Security and Reliability (SAFECOMP'06), vol. 4166 of LNCS 2006 Springer
12. H. Giese, M. Tichy, and D. Schilling Compositional hazard analysis of UML component and deployment models Proceedings of the 23rd International Conference on Computer Safety, Reliability and Security (SAFECOMP'04), vol. 3219 of LNCS 2004 Springer
13. D. Hilbert, and W. Ackerman Principles of Mathematical Logic 1958 Chelsea Publishing Company
14. C.A.R. Hoare An axiomatic basis for computer programming Communications of the ACM 12 10 1969 576 580
15. Hogganvik, I., 2007. A graphical approach to security risk analysis. Ph.D. Thesis. Faculty of Mathematics and Natural Sciences, University of Oslo.
16. I. Hogganvik, and K. Stølen On the comprehension of security risk scenarios Proceedings of the 13th International Workshop on Program Comprehension (IWPC'05) 2005 IEEE Computer Society
17. I. Hogganvik, and K. Stølen Risk analysis terminology for IT systems: does it match intuition? Proceedings of the 4th International Symposium on Empirical Software Engineering (ISESE'05) 2005 IEEE Computer Society
18. I. Hogganvik, and K. Stølen A graphical approach to risk identification, motivated by empirical investigations Proceedings of the 9th International Conference on Model Driven Engineering Languages and Systems (MoDELS'06), vol. 4199 of LNCS 2006 Springer
19. IEC, 1990. Fault Tree Analysis (FTA), IEC 61025.
20. IEC, 1995. Event Tree Analysis in Dependability Management - Part 3: Application Guide - Section 9: Risk Analysis of Technological Systems. IEC 60300.
21. ISO, 2009. Risk Management - Vocabulary, iSO Guide 73:2009.
22. Jones, C.B., 1981. Development methods for computer programmes including a notion of interference. Ph.D. Thesis. Oxford University.
23. C.B. Jones Specification and design of (parallel) programs IFIP Congress 1983
24. B. Kaiser, P. Liggesmeyer, and O. Mäckel A new component concept for fault trees Proceedings of the 8th Australian Workshop on Safety Critical Systems and Software (SCS'08) 2003 Australian Computer Society, Inc.
25. Lund, M.S., Solhaug, B., Stølen, K., in press. Model Driven Risk Analysis. Springer.
26. S. Mannan, and F.P. Lees Lee's Loss Prevention in the Process Industries, vol. 1 3rd ed. 2005 Butterworth-Heinemann
27. B. Meyer Applying "design by contract" Computer 25 10 1992 40 51
28. J. Misra, and K.M. Chandy Proofs of networks of processes IEEE Transactions on Software Engineering 7 4 1981 417 426
29. NYISO, 2005. Final report: on the August 14, 2003 blackout. Tech. rep. New York Independent System Operator (NYISO).
30. Ortmeier, F., Schellhorn, G., 2007. Formal fault tree analysis - practical experiences. In: Proceedings of the 6th International Workshop on Automated Verification of Critical Systems (AVoCS 2006). Electronic Notes in Theoretical Computer Science 185, 139-151.
31. Y. Papadoupoulos, J. McDermid, R. Sasse, and G. Heiner Analysis and synthesis of the behaviour of complex programmable electronic systems in conditions of failure Reliability Engineering and System Safety 71 3 2001 229 247
32. M. Rausand, and A. Høyland System Reliability Theory, Models, Statistical Methods and Applications 2nd ed. 2004 Wiley
33. C.E. Restrepo, J.S. Simonoff, and R. Zimmerman Unraveling geographic interdependencies in electric power infrastructure Proceedings of the 39th Annual Hawaii International Conference on System Sciences (HICSS'06), vol. 10 2006
34. S.M. Rinaldi, J.P. Peerenboom, and T.K. Kelly Identifying, understanding and analyzing critical infrastructure dependencies IEEE Control Systems Magazine 2001 11 25
35. Robinson, R.M., Anderson, K., Browning, B., Francis, G., Kanga, M., Millen, T., Tillman, C., 2001. Risk and Reliability. An Introductory Text, 5th ed. R2A.
36. B. Schneier Attack trees: modeling security threats Dr. Dobb's Journal of Software Tools 24 12 1999 21 29
37. R. Segala Modeling and Verification of Randomized Distributed Real-Time Systems 1995 Massachusetts Institute of Technology
38. UCTE, 2004. Final report of the investigation committee on the 28 September 2003 blackout in Italy. Tech. rep. Union for the Coordination of Transmission of Electricity (UCTE).