SPAN-a DSS for security plan analysis

Moshe Zviran; James C. Hoge; Val A. Micucci

doi:10.1016/0167-4048(90)90089-C

SPAN-a DSS for security plan analysis

Moshe Zviran^*, James C. Hoge, Val A. Micucci

^*Corresponding author for this work

Naval Postgraduate School

Research output: Contribution to journal › Article › peer-review

5 Scopus citations

Abstract

This paper describes a decision support system for assessing information systems (IS) security and for designing an IS security plan. This system addresses threats, risks, vulnerabilities and examines existing countermeasures. It analyzes any need for new security practices and produces a draft IS security plan. The SPAN (Security Plan Analysis) system provides expert advice and decision support to improve decisions made during an analysis of an organization's IS security posture. It is applicable to most organizations, from those which are just starting IS risk assessment to those that already have IS security plans and wish to review them.

Original language	English
Pages (from-to)	153-160
Number of pages	8
Journal	Computers and Security
Volume	9
Issue number	2
DOIs	https://doi.org/10.1016/0167-4048(90)90089-C
State	Published - Apr 1990
Externally published	Yes

Keywords

Decision support systems (DSS)
IS security
Risk assessment
Security planning

Access to Document

10.1016/0167-4048(90)90089-C

Cite this

@article{11c1490d7f134b82a0dbf628d24952e7,

title = "SPAN-a DSS for security plan analysis",

abstract = "This paper describes a decision support system for assessing information systems (IS) security and for designing an IS security plan. This system addresses threats, risks, vulnerabilities and examines existing countermeasures. It analyzes any need for new security practices and produces a draft IS security plan. The SPAN (Security Plan Analysis) system provides expert advice and decision support to improve decisions made during an analysis of an organization's IS security posture. It is applicable to most organizations, from those which are just starting IS risk assessment to those that already have IS security plans and wish to review them.",

keywords = "Decision support systems (DSS), IS security, Risk assessment, Security planning",

author = "Moshe Zviran and Hoge, {James C.} and Micucci, {Val A.}",

year = "1990",

month = apr,

doi = "10.1016/0167-4048(90)90089-C",

language = "אנגלית",

volume = "9",

pages = "153--160",

journal = "Computers and Security",

issn = "0167-4048",

publisher = "Elsevier Ltd.",

number = "2",

}

TY - JOUR

T1 - SPAN-a DSS for security plan analysis

AU - Zviran, Moshe

AU - Hoge, James C.

AU - Micucci, Val A.

PY - 1990/4

Y1 - 1990/4

N2 - This paper describes a decision support system for assessing information systems (IS) security and for designing an IS security plan. This system addresses threats, risks, vulnerabilities and examines existing countermeasures. It analyzes any need for new security practices and produces a draft IS security plan. The SPAN (Security Plan Analysis) system provides expert advice and decision support to improve decisions made during an analysis of an organization's IS security posture. It is applicable to most organizations, from those which are just starting IS risk assessment to those that already have IS security plans and wish to review them.

AB - This paper describes a decision support system for assessing information systems (IS) security and for designing an IS security plan. This system addresses threats, risks, vulnerabilities and examines existing countermeasures. It analyzes any need for new security practices and produces a draft IS security plan. The SPAN (Security Plan Analysis) system provides expert advice and decision support to improve decisions made during an analysis of an organization's IS security posture. It is applicable to most organizations, from those which are just starting IS risk assessment to those that already have IS security plans and wish to review them.

KW - Decision support systems (DSS)

KW - IS security

KW - Risk assessment

KW - Security planning

UR - http://www.scopus.com/inward/record.url?scp=0025406679&partnerID=8YFLogxK

U2 - 10.1016/0167-4048(90)90089-C

DO - 10.1016/0167-4048(90)90089-C

M3 - ???researchoutput.researchoutputtypes.contributiontojournal.article???

AN - SCOPUS:0025406679

SN - 0167-4048

VL - 9

SP - 153

EP - 160

JO - Computers and Security

JF - Computers and Security

IS - 2

ER -

SPAN-a DSS for security plan analysis

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this