IIT Home Page CNR Home Page

Dynamic risk management in ICT systems

Information systems (IS) are deeply integrated in the life of modern society.
Their incorrect operation may lead to great losses for the
organizations. Security incidents cause lots of these losses. Thus, any
organization looks for the ways to improve its security system. Risk
management is a widely accepted practice which helps to organize operation
of security systems efficiently.

Existed approaches to Risk Management are not efficient when applied to the
dynamic, component-based, and distributed systems (e.g., Grid and Web
Services). We work on creation of a universal framework for risk
management of dynamic component-based systems. We focus on risk-aware
collection of security parameters, consider security metrics, and new statistical
approaches to risk assessment.

Università di Pisa
Settore: Informatica - INF/01

Dottorando: Leanid Krautsevich