This paper explores the idea that IT security risk assessment can be formalized as an argumentation game in which assessors argue about how the system can be attacked by a threat agent and defended by the assessors. A system architecture plus assumptions about the environment is specified as an ASPIC+ argumentation theory, and an argument game is defined for exchanging arguments between assessors and hypothetical threat agents about whether the specification satisfies a given security requirement. Satisfaction is always partial and involves a risk assessment of the assessors. The game is dynamic in that the players can both add elements to and delete elements from the architecture specification. The game is shown to respect the underlying argumentation logic in that for any logically completed game 'won' by the defender, the security requirement is a justified conclusion from the architecture specification at that stage of the game. © 2013 Springer-Verlag.
CITATION STYLE
Prakken, H., Ionita, D., & Wieringa, R. (2013). Risk assessment as an argumentation game. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 8143 LNAI, pp. 357–373). https://doi.org/10.1007/978-3-642-40624-9_22
Mendeley helps you to discover research relevant for your work.