Towards Empirical Evaluation of Automated Risk Assessment Methods

Olga Gadyatskaya, Katsiaryna Labunets, Frederica Paci

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

Abstract

Security risk assessment methods are numerous, and it might be confusing for organizations to select one. Researchers have conducted empirical studies with established methods in order to find factors that influence their effectiveness and ease of use. In this paper we evaluate the recent TREsPASS semi-automated risk assessment method with respect to the factors identified as critical in several controlled experiments. We also argue that automation of risk assessment raises new research questions that need to be thoroughly investigated in future empirical studies.
Original languageEnglish
Title of host publication11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016
Place of PublicationBerlin
PublisherSpringer
Pages-
Number of pages1
Publication statusPublished - 2016
Event11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016 - Roscoff, France
Duration: 5 Sep 20167 Sep 2016
Conference number: 11
https://conferences.telecom-bretagne.eu/crisis/2016/

Publication series

Name
PublisherSpringer

Conference

Conference11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016
Abbreviated titleCRISIS 2016
CountryFrance
CityRoscoff
Period5/09/167/09/16
Other5-7 September 2016
Internet address

Fingerprint

Risk assessment
Automation
Experiments

Keywords

  • EC Grant Agreement nr.: FP7/318003
  • EC Grant Agreement nr.: FP7/2007-2013

Cite this

Gadyatskaya, O., Labunets, K., & Paci, F. (2016). Towards Empirical Evaluation of Automated Risk Assessment Methods. In 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016 (pp. -). Berlin: Springer.
Gadyatskaya, Olga ; Labunets, Katsiaryna ; Paci, Frederica. / Towards Empirical Evaluation of Automated Risk Assessment Methods. 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016. Berlin : Springer, 2016. pp. -
@inproceedings{4ef1ace44bfe430685922d48ecc9ce14,
title = "Towards Empirical Evaluation of Automated Risk Assessment Methods",
abstract = "Security risk assessment methods are numerous, and it might be confusing for organizations to select one. Researchers have conducted empirical studies with established methods in order to find factors that influence their effectiveness and ease of use. In this paper we evaluate the recent TREsPASS semi-automated risk assessment method with respect to the factors identified as critical in several controlled experiments. We also argue that automation of risk assessment raises new research questions that need to be thoroughly investigated in future empirical studies.",
keywords = "EC Grant Agreement nr.: FP7/318003, EC Grant Agreement nr.: FP7/2007-2013",
author = "Olga Gadyatskaya and Katsiaryna Labunets and Frederica Paci",
year = "2016",
language = "English",
publisher = "Springer",
pages = "--",
booktitle = "11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016",

}

Gadyatskaya, O, Labunets, K & Paci, F 2016, Towards Empirical Evaluation of Automated Risk Assessment Methods. in 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016. Springer, Berlin, pp. -, 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016, Roscoff, France, 5/09/16.

Towards Empirical Evaluation of Automated Risk Assessment Methods. / Gadyatskaya, Olga; Labunets, Katsiaryna; Paci, Frederica.

11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016. Berlin : Springer, 2016. p. -.

Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

TY - GEN

T1 - Towards Empirical Evaluation of Automated Risk Assessment Methods

AU - Gadyatskaya, Olga

AU - Labunets, Katsiaryna

AU - Paci, Frederica

PY - 2016

Y1 - 2016

N2 - Security risk assessment methods are numerous, and it might be confusing for organizations to select one. Researchers have conducted empirical studies with established methods in order to find factors that influence their effectiveness and ease of use. In this paper we evaluate the recent TREsPASS semi-automated risk assessment method with respect to the factors identified as critical in several controlled experiments. We also argue that automation of risk assessment raises new research questions that need to be thoroughly investigated in future empirical studies.

AB - Security risk assessment methods are numerous, and it might be confusing for organizations to select one. Researchers have conducted empirical studies with established methods in order to find factors that influence their effectiveness and ease of use. In this paper we evaluate the recent TREsPASS semi-automated risk assessment method with respect to the factors identified as critical in several controlled experiments. We also argue that automation of risk assessment raises new research questions that need to be thoroughly investigated in future empirical studies.

KW - EC Grant Agreement nr.: FP7/318003

KW - EC Grant Agreement nr.: FP7/2007-2013

M3 - Conference contribution

SP - -

BT - 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016

PB - Springer

CY - Berlin

ER -

Gadyatskaya O, Labunets K, Paci F. Towards Empirical Evaluation of Automated Risk Assessment Methods. In 11th International Conference on Risks and Security of Internet and Systems, CRiSIS 2016. Berlin: Springer. 2016. p. -