Managing Information Security Risks: The OCTAVE (SM) Approach
©2003 |Addison-Wesley Professional | Available
Christopher Alberts
Audrey Dorofee
©2003 |Addison-Wesley Professional | Available
Introducing Pearson+ 1500+ eTexts and study tools, all in one place. Subscriptions starting at $9.99/month.
K-12 educators: This link is for individuals purchasing with credit cards or PayPal only. Contact your Savvas Learning Company Account General Manager for purchase options.
This book is a descriptive and process-oriented book on a new security risk
evaluation method, OCTAVE. OCTAVE stands for Operationally Critical
Threat, Asset, and Vulnerability Evaluation(SM). An information security risk
evaluation helps organizations evaluate organizational practice, as well as the
installed technology base and to make decisions based on potential impact.
This product is part of the following series. Click on a series title to see the full list of products in the series.
Sample chapter is available for download in PDF format.
This material is protected under all copyright laws, as they currently exist. No portion of this material may be reproduced, in any form or by any means, without permission in writing from the publisher.
From the CERT Coordination Center at the SEI, this book
describes OCTAVE, a new method of evaluating
information security risk.
This book is from the CERT Coordination Center and
Networked Systems Survivability (NSS) group at the SEI,
the Software Engineering Institute at Carnegie Mellon
University. There is growing interest in OCTAVE. The DOD
Medical Health System is one early adopter. There is also
keen interest from the financial sector. The authors are
the lead developers of the OCTAVE method and are
experts in helping organizations manage their own security
risks.
List of Figures.
List of Tables.
Preface.
Acknowledgments.
I. INTRODUCTION.
II. THE OCTAVE METHOD.
III. VARIATIONS ON THE OCTAVE APPROACH.
Pearson offers affordable and accessible purchase options to meet the needs of your students. Connect with us to learn more.
K12 Educators: Contact your Savvas Learning Company Account General Manager for purchase options. Instant Access ISBNs are for individuals purchasing with credit cards or PayPal.
Savvas Learning Company is a trademark of Savvas Learning Company LLC.
Alberts & Dorofee
©2003  | Addison-Wesley Professional  | 520 pp
Christopher Alberts is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). He and Audrey Dorofee are the principal developers of OCTAVE. Before joining the SEI, Christopher was a scientist at Carnegie Mellon Research Institute, where he developed mobile robots for hazardous environments. He also worked at AT&T Bell Laboratories, where he designed information systems to support AT&T's advanced manufacturing processes.
Audrey Dorofee is a senior member of the technical staff in the Networked Systems Survivability Program at the Software Engineering Institute (SEI). She and Christopher Alberts are the principal developers of OCTAVE. Audrey previously was project lead for risk management in the Risk Program at the SEI. Prior to joining the SEI, she worked for the MITRE Corporation, supporting various projects for NASA, including Space Station software environments, user interfaces, and expert systems.
We're sorry! We don't recognize your username or password. Please try again.
The work is protected by local and international copyright laws and is provided solely for the use of instructors in teaching their courses and assessing student learning.
You have successfully signed out and will be required to sign back in should you need to download more resources.