Abstract
The growing complexity of organizations and the increasing number of sophisticated cyber attacks asks for a systematic and integral approach to Enterprise Risk and Security Management (ERSM). As enterprise architecture offers the necessary integral perspective, including the business and IT aspects as well as the business motivation, it seems natural to integrate risk and security aspects in the enterprise architecture. In this paper we show how the ArchiMate standard for enterprise architecture modelling can be used to support risk and security modelling and analysis throughout the ERSM cycle, covering both risk assessment and security deployment.
| Original language | English |
|---|---|
| Title of host publication | Graphical Models for Security |
| Subtitle of host publication | Third International Workshop, GraMSec 2016, Lisbon, Portugal, June 27, 2016, Revised Selected Papers |
| Editors | Barbara Kordy, Mathias Ekstedt, Deng Seong Kim |
| Place of Publication | Cham |
| Publisher | Springer |
| Pages | 94-101 |
| Number of pages | 8 |
| ISBN (Electronic) | 978-3-319-46263-9 |
| ISBN (Print) | 978-3-319-46262-2 |
| DOIs | |
| Publication status | Published - 8 Sept 2016 |
| Event | 3rd International Workshop on Graphical Models for Security, GraMSec 2016 - Lisbon, Portugal Duration: 27 Jun 2016 → 27 Jun 2016 Conference number: 3 |
Publication series
| Name | Lecture notes in computer science |
|---|---|
| Publisher | Springer Verlag |
| Volume | 9987 |
| ISSN (Print) | 0302-9743 |
| ISSN (Electronic) | 1611-3349 |
Workshop
| Workshop | 3rd International Workshop on Graphical Models for Security, GraMSec 2016 |
|---|---|
| Abbreviated title | GraMSec |
| Country/Territory | Portugal |
| City | Lisbon |
| Period | 27/06/16 → 27/06/16 |
Keywords
- Enterprise Architecture
- Risk analysis
- Risk and security modelling
- EC Grant Agreement nr.: FP7/318003
- ArchiMate
- EWI-27179
- METIS-318505
- IR-101091
- EC Grant Agreement nr.: FP7/2007-2013