Gbitten

Monday, September 29, 2008

 

Economic security metrics

This paper by Rainer Böhme and Thomas Nowey is really good. Its first part cleverly summarizes the main financial decision methods for information security investments like ALE (Annual Loss Expectancy), some ROSI (Return on Security Investment) variations and NVP (Net Present Value). In addition, it also analyzes some weakness of these methods.

The second part describes some security metrics based on market mechanisms. This subject is very interest and deserves more of my attention in the future. By the way, this paper was originally a chapter of “LNCS 4909 Dependability Metrics”.

Labels: , ,


posted by Gustavo Araujo Bittencourt  # 7:37 AM




<< Home

Archives

January 2000   February 2000   March 2000   February 2007   April 2007   May 2007   July 2007   October 2007   November 2007   January 2008   February 2008   March 2008   September 2008   November 2008   September 2009   December 2009  

This page is powered by Blogger. Isn't yours?

Subscribe to Posts [Atom]