Threat Analysis.

def. Threat is a possible danger.

In computer security a threat is a possible danger that might exploit a vulnerability to breach security and thus cause possible harm.

def. Threat analysis is the analysis of the probability of occurrences and consequences of damaging actions to a system.

I'll approach Threat Analysis this way:

1. List all possible threats that i can imagine or find in literature, that are directed toward beings or things i wish to protect,
2. Consider level of risk associated with each threat and assign it as a value (0: critical threat level; the higher: the less danger),
3. Describe all possible consequences i can imagine or find, for each threat.
4. Keep doing this repeatedly, as needs arise. ('Threats need to be attacked actively').

Perhaps i'll develop method for level of risk measurement later.

No comments:

Post a Comment