4. Data processing: database and file management or data structures
  5. Database design
  6. Data structure types

Method and apparatus for analyzing information systems using sto

Data processing: database and file management or data structures – Database design – Data structure types

Patent

Rate now
  [ 0.00 ] – not rated yet Voters 0   Comments 0

Details

39520059, 707 9, G06F 1100

Patent

active

058505164

ABSTRACT:
A computer-implemented method and apparatus electronically represent and quantify the security of a system as a logical tree structure including leaf nodes representing attacks against the system and intermediate nodes representing various logical combinations of attacks necessary to mount a successful overall attack. An indication of the overall security of the system is quantified in a value of a root node of the tree. The values of the various nodes can be Boolean or continuous, representing simple binary security attributes such as feasible/infeasible or more complicated attributes such as cost, time or probability. The nodes' attributes and values can also represent defenses as well as attacks. The attack trees can be used to calculate the cost, time or probability of an attack to list the security assumptions of a system, to compare competing systems, to evaluate system modifications, to perform security subsystem analysis, to allocate a security budget, and for many other uses.

REFERENCES:
patent: 5542024 (1996-07-01), Balint et al.
patent: 5630076 (1997-05-01), Saulpaugh et al.
Ken Wong and Steve Watt, Managing Information Security, Elsevier Science Publishers, 1990, Chapter 5.
K.M. Jackson and J. Hruska, Computer Security Reference Book, Butterworth-Heiman, 1992, Chapter 21.
Philip Fites and Martin Katz, Information Systems Security, Van Nostrand Reinhold, 1993, Chapter 3.
Zella Ruthberg and Harold Tipton, Handbook of Information Security Management, Auerbach Publishers, 1993, Chapter 1-3-1.
Zella Ruthberg and Harold Tipton, Handbook of Information Security Management, 1994-95 Yearbook, Auerbach, 1994, Chapter 1-3.
Bruce Schneier, Applied Cryptography, Wiley, 1996, pp. 65-68.

Schneier Bruce

Inventor

  [ 0.00 ] – not rated yet Voters 0   Comments 0

De'cady Albert

Examiner

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Elisca Pierre Eddy

Examiner

  [ 0.00 ] – not rated yet Voters 0   Comments 0

Yang Joseph

Representative

  [ 0.00 ] – not rated yet Voters 0   Comments 0

LandOfFree

Say what you really think

Search LandOfFree.com for the USA inventors and patents. Rate them and share your experience with other people.

Rating

Method and apparatus for analyzing information systems using sto does not yet have a rating. At this time, there are no reviews or comments for this patent.

If you have personal experience with Method and apparatus for analyzing information systems using sto, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Method and apparatus for analyzing information systems using sto will most certainly appreciate the feedback.

Rate now

     

Profile ID: LFUS-PAI-O-1464082

  Search
All data on this website is collected from public sources. Our data reflects the most accurate information available at the time of publication.

Canada

 Charities
 Companies
 MP Candidates
 Patents
 Employee Salary Disclosure

World

 Places of the World
 Scientific Papers

United States

 Banks
 Companies
 Counties
 Patents
 Employee Salary Disclosure