May 14, 2008 to May 16, 2008
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICIS.2008.64
In today's business environments, the unimpeded execution of corporate business processes is crucial for a company's success. As business processes are permanently exposed to a variety of threats, companies are increasingly forced to pay attention to security issues. Existing approaches for the evaluation of security measures often neglect the consideration of business needs and multiple objectives. This paper gives an overview of the Atana approach that supports decision makers with the elicitation of security safeguards based on corporate business processes and according to multiple objectives. It introduces different objectives types that are needed for measuring the value of security investments.
Secure Business Processes, Security Valuation, Multiobjective Decision Support
Thomas Neubauer, Johannes Heurix, "Objective Types for the Valuation of Secure Business Processes", ICIS, 2008, Computer and Information Science, ACIS International Conference on, Computer and Information Science, ACIS International Conference on 2008, pp. 231-236, doi:10.1109/ICIS.2008.64