Information Security: Why the Future Belongs to the Quants
暂无分享,去创建一个
Although most businesses say information security is a primary concern, few have adequate systems in place because securing information requires a risk-management approach with dependable, quantifiable metrics. Simple questions, readily answered in any other business context, are met by information security experts with embarrassed silence. These questions include: Is my security better this year? What am I getting for my security dollars? How do I compare with my peers? Answering such questions requires rigorous security metrics; and a risk-management framework in which to compare them.
[1] John S. Quarterman. Monoculture Considered Harmful , 2002, First Monday.
[2] S. R. Jammalamadaka,et al. Against the Gods: The Remarkable Story of Risk , 1999 .
[3] William A. Arbaugh,et al. IEEE 52 Computer , 1985 .
[4] Vern Paxson,et al. How to Own the Internet in Your Spare Time , 2002, USENIX Security Symposium.