Systematic framework to cyber incident scenario risk analysis

C. Ariel Pinto; Luna Magpili

Systematic framework to cyber incident scenario risk analysis

C. Ariel Pinto
, Luna Magpili

Cybersecurity

University at Albany

Washington State University Pullman

Research output: Contribution to conference › Paper › peer-review

Abstract

Scenario risk analysis of cyber incidents are often published in the form of natural language narratives in many types of publications, including engineering and technology, management, and economics. Though narrative-form of scenarios may be convenient and effective for informational purposes, describing such complex scenarios as cyber incidents only using natural language presents particular limitations: usability across disciplines, side-by-side comparison among supposedly distinct analysis, and re-usability. This paper describes a systematic framework to model cyber incidents to overcome these particular limitations of narrative descriptions using tools and techniques from systems engineering, risk analysis, and decision analysis. This can be useful for engineering managers who are conducting a multidisciplinary risk analysis of past or future cyber scenarios.

Original language	English
State	Published - 2016
Event	2016 International Annual Conference of the American Society for Engineering Management, ASEM 2016 - Charlotte, United States Duration: Oct 26 2016 → Oct 29 2016

Conference

Conference	2016 International Annual Conference of the American Society for Engineering Management, ASEM 2016
Country/Territory	United States
City	Charlotte
Period	10/26/16 → 10/29/16

Keywords

Cyber incidents
Risk management
Scenario analysis
Scenario risk analysis
Systems engineering

Cite this

@conference{9fe14c197d7d493ca2cfb1a505279c01,

title = "Systematic framework to cyber incident scenario risk analysis",

abstract = "Scenario risk analysis of cyber incidents are often published in the form of natural language narratives in many types of publications, including engineering and technology, management, and economics. Though narrative-form of scenarios may be convenient and effective for informational purposes, describing such complex scenarios as cyber incidents only using natural language presents particular limitations: usability across disciplines, side-by-side comparison among supposedly distinct analysis, and re-usability. This paper describes a systematic framework to model cyber incidents to overcome these particular limitations of narrative descriptions using tools and techniques from systems engineering, risk analysis, and decision analysis. This can be useful for engineering managers who are conducting a multidisciplinary risk analysis of past or future cyber scenarios.",

keywords = "Cyber incidents, Risk management, Scenario analysis, Scenario risk analysis, Systems engineering",

author = "\{Ariel Pinto\}, C. and Luna Magpili",

note = "Publisher Copyright: {\textcopyright} 2016 American Society for Engineering Management.; 2016 International Annual Conference of the American Society for Engineering Management, ASEM 2016 ; Conference date: 26-10-2016 Through 29-10-2016",

year = "2016",

language = "English",

}

TY - CONF

T1 - Systematic framework to cyber incident scenario risk analysis

AU - Ariel Pinto, C.

AU - Magpili, Luna

PY - 2016

Y1 - 2016

N2 - Scenario risk analysis of cyber incidents are often published in the form of natural language narratives in many types of publications, including engineering and technology, management, and economics. Though narrative-form of scenarios may be convenient and effective for informational purposes, describing such complex scenarios as cyber incidents only using natural language presents particular limitations: usability across disciplines, side-by-side comparison among supposedly distinct analysis, and re-usability. This paper describes a systematic framework to model cyber incidents to overcome these particular limitations of narrative descriptions using tools and techniques from systems engineering, risk analysis, and decision analysis. This can be useful for engineering managers who are conducting a multidisciplinary risk analysis of past or future cyber scenarios.

AB - Scenario risk analysis of cyber incidents are often published in the form of natural language narratives in many types of publications, including engineering and technology, management, and economics. Though narrative-form of scenarios may be convenient and effective for informational purposes, describing such complex scenarios as cyber incidents only using natural language presents particular limitations: usability across disciplines, side-by-side comparison among supposedly distinct analysis, and re-usability. This paper describes a systematic framework to model cyber incidents to overcome these particular limitations of narrative descriptions using tools and techniques from systems engineering, risk analysis, and decision analysis. This can be useful for engineering managers who are conducting a multidisciplinary risk analysis of past or future cyber scenarios.

KW - Cyber incidents

KW - Risk management

KW - Scenario analysis

KW - Scenario risk analysis

KW - Systems engineering

UR - https://www.scopus.com/pages/publications/85014097412

M3 - Paper

T2 - 2016 International Annual Conference of the American Society for Engineering Management, ASEM 2016

Y2 - 26 October 2016 through 29 October 2016

ER -

Systematic framework to cyber incident scenario risk analysis

Abstract

Conference

Keywords

Other files and links

Fingerprint

Cite this