Accession Number:

ADA440505

Title:

The Vulnerability Assessment & Mitigation Methodology

Descriptive Note:

Corporate Author:

RAND NATIONAL DEFENSE RESEARCH INST SANTA MONICA CA

Report Date:

2003-01-01

Pagination or Media Count:

135.0

Abstract:

As information systems become increasingly important to the functions of organizations, security and reliable operation of these systems are also becoming increasingly important. Interoperability, information sharing, collaboration, design imperfections, limitations, and the like lead to vulnerabilities that can endanger information system security and operation. Unfortunately, understanding an organizations reliance on information systems, the vulnerabilities of these systems, and how to mitigate the vulnerabilities has been a daunting challenge, especially for less wellknown or even unknown vulnerabilities that do not have a history of being exploited.

Subject Categories:

  • Computer Systems Management and Standards

Distribution Statement:

APPROVED FOR PUBLIC RELEASE