Formal Modeling and Verification of Opportunity-enabled Risk Management

With the advent of the Bring-Your-Own-Device (BYOD) trend, mobile work is achieving a widespread diffusion that challenges the traditional view of security standard and risk management. A recently proposed model, called opportunity-enabled risk management (OPPRIM), aims at balancing the analysis of...

Full description

Saved in:
Bibliographic Details
Published in2015 IEEE Trustcom/BigDataSE/ISPA Vol. 1; pp. 676 - 684
Main Authors Aldini, Alessandro, Seigneur, Jean-Marc, Lafuente, Carlos Ballester, Titi, Xavier, Guislain, Jonathan
Format Conference Proceeding
LanguageEnglish
Published IEEE 01.08.2015
Subjects
Access control
BYOD
Companies
Measurement
Mobile communication
model checking
opportunity analysis
Real-time systems
Risk management
Online AccessGet full text
DOI10.1109/Trustcom.2015.434

Cover

More Information
Summary:With the advent of the Bring-Your-Own-Device (BYOD) trend, mobile work is achieving a widespread diffusion that challenges the traditional view of security standard and risk management. A recently proposed model, called opportunity-enabled risk management (OPPRIM), aims at balancing the analysis of the major threats that arise in the BYOD setting with the analysis of the potential increased opportunities emerging in such an environment, by combining mechanisms of risk estimation with trust and threat metrics. Firstly, this paper provides a logic-based formalization of the policy and metric specification paradigm of OPPRIM. Secondly, we verify the OPPRIM model with respect to the socio-economic perspective. More precisely, this is validated formally by employing tool-supported quantitative model checking techniques.
DOI:10.1109/Trustcom.2015.434