The CORAS Language – why it is designed the way it is
نویسندگان
چکیده
CORAS1 [6] is an approach to risk analysis based on the ISO 31000 international standard on risk management [4]. The approach is model-driven in the sense that graphical models are actively used throughout the whole risk analysis process to support the various analysis tasks and activities, and to document the results. It is defensive, which means that the risk analysis is concerned with protecting existing assets, rather than balancing potential gain against risk of investment loss (as, for example, within gambling or stock trading). It is asset-driven in the sense that the assets to be defended and protected are identified during the very initial phases of the process; all subsequent tasks, such as risk identification and risk treatment, are driven by these assets to ensure that the analysis focuses on what the risk analysis should help to defend. CORAS is a self-contained approach to risk analysis in the sense that it comes with all guidelines, techniques and tool-support that are needed throughout the whole process. In particular, CORAS consists of the three tightly interwoven artifacts of a language, a tool and a method. The tool supports the CORAS language, and hence all steps of the method. The method is divided into eight steps with clearly defined objectives. Each step is decomposed into specific analysis tasks supported by practical guidelines for how to conduct the tasks in practice using the tool and the language. Clearly, when developing any such approach to risk analysis, it is necessary to make a number of design choices. The choices are obviously determined by the kind of approach we aim for, and what we wish the users of the approach should be able to accomplish. At the same time, different objectives may pull in different directions and therefore need to be balanced. In this paper we present the most important features of the CORAS language and motivate some of the major design choices we did. More precisely, in Section 2 we give an overview of the language and the different kinds of diagrams that are supported. In Section 3 we
منابع مشابه
Structured Semantics for the CORAS Security Risk Modelling Language
The CORAS security risk modelling language is a customised graphical language for communication, documentation and analysis of security threat and risk scenarios. This paper presents a semantics for the CORAS language. The semantics is structured in that it provides stepby-step instructions on how to correctly interpret an arbitrary CORAS diagram. The result is a readable paragraph of English. ...
متن کاملWhy we need to read and understand literature: literariness and Hans Rosling’s Factfulness (2018)
My article addresses the qualities of “good” literature and how an understanding of the nature of literary devices, so-called “literariness”, can enhance the reading experience. Focusing on Hans Rosling’s Factfulness (2018), I discuss some of the most important features of good writing. Six literary devices have been selected for special attention: point of view, tone, amplification, anecdotes,...
متن کاملSpecifying Legal Risk Scenarios Using the CORAS Threat Modelling Language
The paper makes two main contributions: (1) It presents experiences from using the CORAS language for security threat modelling to specify legal risk scenarios. These experiences are summarised in the form of requirements to a more expressive language providing specific support for the legal domain. (2) Its second main contribution is to present ideas towards the fulfilment of these requirement...
متن کاملSintef Report
Traditional system documentation focuses on the behaviour or functionality we would like the system or application to provide. However, it is equally important to document the undesirable behaviour; what happens when things goes wrong. Moreover, this documentation must be unambiguous and easy to read and understand for the different stakeholders involved. SINTEF has developed a graphical langua...
متن کاملThe Saying/Showing Distinction in Early Wittgenstein and Its Implications
Jafar Morvarid[1] In this paper, I shall try to clarify the saying/showing distinction and to emphasize the role of this distinction in constructing a coherent picture of language and the world. In order to properly understand the differences between the sayable and the showable, I will throw light on the limits of language and the world. I will explain why it is impossible to say the showab...
متن کامل