scholarly journals An Adaptive, Situation-Based Risk Assessment and Security Enforcement Framework for the Maritime Sector

Sensors ◽  
2021 ◽  
Vol 22 (1) ◽  
pp. 238
Author(s):  
Christos Grigoriadis ◽  
Romain Laborde ◽  
Antonin Verdier ◽  
Panayiotis Kotzanikolaou
Keyword(s):  
Risk Assessment ◽  
Security Policy ◽  
Risk Mitigation ◽  
Assessment Process ◽  
Adaptive Security ◽  
Efficient Manner ◽  
Worst Case ◽  
Risk Assessment Process ◽  
Security Controls ◽  
Dynamic Risk

Maritime processes involve actors and systems that continuously change their underlying environment, location and threat exposure. Thus, risk mitigation requires a dynamic risk assessment process, coupled with an adaptive, event driven security enforcement mechanism, to efficiently deal with dynamically evolving risks in a cost efficient manner. In this paper, we propose an adaptive security framework that covers both situational risk assessment and situational driven security policy deployment. We extend MITIGATE, a maritime-specific risk assessment methodology, to capture situations in the risk assessment process and thus produce fine-grained and situation-specific, dynamic risk estimations. Then, we integrate DynSMAUG, a situation-driven security management system, to enforce adaptive security policies that dynamically implement security controls specific to each situation. To validate the proposed framework, we test it based on maritime cargo transfer service. We utilize various maritime specific and generic systems employed during cargo transfer, to produce dynamic risks for various situations. Our results show that the proposed framework can effectively assess dynamic risks per situation and automate the enforcement of adaptive security controls per situation. This is an important improvement in contrast to static and situation-agnostic risk assessment frameworks, where security controls always default to worst-case risks, with a consequent impact on the cost and the applicability of proper security controls.

scholarly journals Assessing Risk and Driving Risk Mitigation for First-of-a-Kind Advanced Reactors

2011 ◽  
Author(s):  
John W. Collins
Keyword(s):  
Risk Assessment ◽  
Decision Making ◽  
Nuclear Power ◽  
Power Plants ◽  
Risk Mitigation ◽  
Assessment Process ◽  
Next Generation ◽  
Risk Assessment Process ◽  
Step Process ◽  
Driving Risk

Planning and decision making amidst programmatic and technological risks represent significant challenges for projects. This presentation addresses the four-step risk assessment process needed to determine a clear path forward to mature needed technology and design, license, and construct advanced first-of-a-kind nuclear power plants, including Small Modular Reactors. This four-step process has been carefully applied to the Next Generation Nuclear Plant.

A methodology for e-banking risk assessment using fuzzy logic and Bayesian network

2021 ◽  
Vol 19 (3) ◽  
pp. 101-124
Author(s):  
Ako Rita Erhovwo ◽  
Okpako Abugor Ejaita ◽  
Duke Oghorodi
Keyword(s):  
Risk Assessment ◽  
Fuzzy Logic ◽  
Bayesian Network ◽  
Operational Risk ◽  
Assessment Process ◽  
Exposure Level ◽  
Model Assessment ◽  
Assessment Methodology ◽  
Risk Assessment Process ◽  
Risk Assessment Methodology

Risk assessment methodology in general has been around for quite a while, its prominence in the E-banking field is a fairly recent phenomenon. We are at the point where risk assessments are critical to the overall function of banks. Banks are required to assess the processes underlying their operations against potential threats, vulnerabilities, and their potential impact, which helps in revealing the risk exposure level, and the residual risks. Identifying clearly a risk assessment methodology is often the first step of assessing and evaluating risk associated with an organization operation. This paper presents a risk assessment methodology for Ebanking Operational Risk. The proposed risk assessment methodology consists of four major steps: a risk model, assessment approach, analysis approach and a risk assessment process. The main tool of the proposed risk assessment methodology is the risk assessment process. The assessment process gives detailed explanation with respect to which models or techniques may be applied and how they are expressed. In this paper the risk assessment technique is built upon fuzzy logic (FL) concept and Bayesian network (BN). In fuzzy logic, an element is included with a degree of membership. Bayesian network is an inference classifier that is capable of representing conditional independencies. The Bayesian and fuzzy logic–based risk assessment process gives good predictions for risk learning and inference in the E-banking systems. Keywords: Fuzzy logic, Bayesian network, risk assessment methodology, operational risk, Ebanking

Sign in / Sign up

Export Citation Format

Share Document