Article | REF: SE2500 V3

IT security for risk management - Application to information systems

Author: Frédérique VALLÉE

Publication date: April 10, 2016

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!


Français

3. Risk reduction actions

Once risk analysis methods have highlighted the vulnerabilities of the information system, the next step is to find solutions that will reduce the risk to an acceptable level. This chapter presents some of these solutions.

3.1 Nature of possible actions

Depending on the stage at which they intervene in the evolution of the threat, risk reduction actions can be prevention, detection, correction or recovery.

Prevention deals with measures to be taken to avoid a disaster. For example:

  • raising awareness (among legitimate users) ;

  • deterrence (e.g. a tattoo covering the body of a message with an indelible electronic watermark);

  • ...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!


The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors
+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year
From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Security of information systems

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
Risk reduction actions