Browse > Article
http://dx.doi.org/10.13089/JKIISC.2003.13.5.69

Case Study for Information System Vulnerability Assessment through Improved OCTAVE Approach  

김기윤 (광운대학교 경영대학 경영학과)
양동구 (현대정보기술 금융사업단)
Publication Information
Journal of the Korea Institute of Information Security & Cryptology / v.13, no.5, 2003 , pp. 69-79 More about this Journal
Abstract
We analyze key business process by using IDEF method in the perspective of business continuity, identify key information assets by using Skandia model, and use Nessus Version 1.4.2 to assess vulnerability about the sever of library information system according to OCTAVE(The Operationally Critical Threat, Asset, and Vulnerability Evaluation) approach. We suggest the vulnerability assessment case for introducing improved OCTAVE method including IDEF method and Skandia model.
Keywords
OCTAVE;
Citations & Related Records
Times Cited By KSCI : 3  (Citation Analysis)
연도 인용수 순위
1 Business Continuity Planning /
[ Martin Nemzow ] / International Journal of Network Management   DOI   ScienceOn
2 행정전산망의 재해복구를 위한 비상계획 현황과 개선방안 /
[ 김기윤;김종기;김정덕;이경석 ] / 통신정보보호학회지   과학기술학회마을
3 정보시스템 재해에 대비한 업무지속성관리 /
[ 김종기;김기윤;이경석;김정덕 ] / 통신정보보호학회지   과학기술학회마을
4 /
[ 조태희 ] / 취약점 분석 평가 방법론 소개
5 /
[ Knowledge Based Systems, Inc.(KBSI) ] / A structured approach to enterprise modeling and analysis
6 /
[ CSI/FBI ] / Computer Crime and Security Survey
7 취약성 평가의 계량화: 정보자산가치가중치법 /
[ 김기윤;나관식 ] / 통신정보보호학회지   과학기술학회마을
8 /
[ Christopher J. Alberts;Audrey J. Dorofee ] / OCTAVE-SM Method Implementation guide(Version 2.0)
9 지식자본시대 회계의 과제: 무형자산의 측정과 보고 /
[ 조성표 ] / 회계저널
10 위험관리와 위기관리: 정보시스템의 재난복구 /
[ 김기윤 ] / 리스크관리연구
11 /
[ Lief Edvinsson;Michael S. Malone ] / Intellectual Capital
12 Business Continuity and Disaster Recovery Planning and Management: Perspective /
[ Kristen Noakes-Fry;Trude Diamond ] / Gartner Research, DPRO-100862