Abstract
Risk management has become an essential mechanism for business and security analysts, since it enable the identification, evaluation and treatment of any threats, vulnerabilities, and risks to which organizations maybe be exposed. In this paper, we discuss the need to provide a standard representation of security countermeasures in order to automate the selection of countermeasures for business processes. The main contribution lies in the specification of security pattern as standard representation for countermeasures. Classical security pattern structure is extended to incorporate new features that enable the automatic selection of security patterns. Furthermore, a prototype has been developed which support the specification of security patterns in a graphical way. © 2013 Springer-Verlag Berlin Heidelberg.
Author supplied keywords
Cite
CITATION STYLE
Varela-Vaca, A. J., Warschofsky, R., Gasca, R. M., Pozo, S., & Meinel, C. (2013). A security pattern-driven approach toward the automation of risk treatment in business processes. In Advances in Intelligent Systems and Computing (Vol. 189 AISC, pp. 13–23). Springer Verlag. https://doi.org/10.1007/978-3-642-33018-6_2
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
