CRAC: Confidentiality Risk Analysis and IT-Architecture Comparison of Business Networks (extended version)

A. Morali, Emmanuele Zambon, Sandro Etalle, Roelf J. Wieringa

    Research output: Book/ReportReportProfessional

    244 Downloads (Pure)


    The leakage of confidential information (e.g.\ industrial secrets, patient records and user credentials) is one of the risks that have to be accounted for and mitigated by organizations dealing with confidential data. Unfortunately, assessing confidentiality risk is challenging, particularly in the presence of cross- organization cooperation, like in the case of outsourcing. This is due to the complexity of business networks. This paper presents an IT-architecture based method for assessing and comparing confidentiality risks of IT-based business networks from the perspective of one of the organizations in the network.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages8
    Publication statusPublished - 26 Sept 2009

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    ISSN (Print)1381-3625


    • EWI-16067
    • SCS-Cybersecurity
    • SCS-Services
    • Confidentiality
    • Networked Organizations
    • IR-68051
    • METIS-265755
    • IT architecture

    Cite this