{"id":"https://openalex.org/W16737850","doi":"https://doi.org/10.1007/978-3-642-21424-0_21","title":"Problem Analysis of Traditional IT-Security Risk Assessment Methods \u2013 An Experience Report from the Insurance and Auditing Domain","display_name":"Problem Analysis of Traditional IT-Security Risk Assessment Methods \u2013 An Experience Report from the Insurance and Auditing Domain","publication_year":2011,"publication_date":"2011-01-01","ids":{"openalex":"https://openalex.org/W16737850","doi":"https://doi.org/10.1007/978-3-642-21424-0_21","mag":"16737850"},"language":"en","primary_location":{"id":"doi:10.1007/978-3-642-21424-0_21","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-21424-0_21","pdf_url":null,"source":{"id":"https://openalex.org/S4210175514","display_name":"IFIP International Federation for Information Processing/IFIP","issn_l":"1571-5736","issn":["1571-5736","1861-2288"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IFIP Advances in Information and Communication Technology","raw_type":"book-chapter"},"type":"book-chapter","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://inria.hal.science/hal-01567605","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5039795147","display_name":"Stefan Taubenberger","orcid":null},"institutions":[{"id":"https://openalex.org/I4210105243","display_name":"Munich Re (United States)","ror":"https://ror.org/01dyrtb20","country_code":"US","type":"company","lineage":["https://openalex.org/I4210105243"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Stefan Taubenberger","raw_affiliation_strings":["MunichRe, Munich, Germany","MunichRe"],"affiliations":[{"raw_affiliation_string":"MunichRe, Munich, Germany","institution_ids":[]},{"raw_affiliation_string":"MunichRe","institution_ids":["https://openalex.org/I4210105243"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029120753","display_name":"Jan J\u00fcrjens","orcid":"https://orcid.org/0000-0002-8938-0470"},"institutions":[{"id":"https://openalex.org/I4210163630","display_name":"Fraunhofer Institute for Software and Systems Engineering","ror":"https://ror.org/058kjq542","country_code":"DE","type":"facility","lineage":["https://openalex.org/I4210163630","https://openalex.org/I4923324"]},{"id":"https://openalex.org/I200332995","display_name":"TU Dortmund University","ror":"https://ror.org/01k97gp34","country_code":"DE","type":"education","lineage":["https://openalex.org/I200332995"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Jan J\u00fcrjens","raw_affiliation_strings":["TU Dortmund and Fraunhofer ISST, Germany","TU Dortmund and Fraunhofer ISST"],"affiliations":[{"raw_affiliation_string":"TU Dortmund and Fraunhofer ISST, Germany","institution_ids":["https://openalex.org/I200332995","https://openalex.org/I4210163630"]},{"raw_affiliation_string":"TU Dortmund and Fraunhofer ISST","institution_ids":["https://openalex.org/I200332995"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017777981","display_name":"Yijun Yu","orcid":null},"institutions":[{"id":"https://openalex.org/I230495080","display_name":"University of Limerick","ror":"https://ror.org/00a0n9e72","country_code":"IE","type":"education","lineage":["https://openalex.org/I230495080"]}],"countries":["IE"],"is_corresponding":false,"raw_author_name":"Yijun Yu","raw_affiliation_strings":["Lero, University of Limerick, Ireland","University of Limerick"],"affiliations":[{"raw_affiliation_string":"Lero, University of Limerick, Ireland","institution_ids":["https://openalex.org/I230495080"]},{"raw_affiliation_string":"University of Limerick","institution_ids":["https://openalex.org/I230495080"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5060861082","display_name":"Bashar Nuseibeh","orcid":"https://orcid.org/0000-0002-3476-053X"},"institutions":[{"id":"https://openalex.org/I204136569","display_name":"The Open University","ror":"https://ror.org/05mzfcs16","country_code":"GB","type":"education","lineage":["https://openalex.org/I204136569"]},{"id":"https://openalex.org/I230495080","display_name":"University of Limerick","ror":"https://ror.org/00a0n9e72","country_code":"IE","type":"education","lineage":["https://openalex.org/I230495080"]}],"countries":["GB","IE"],"is_corresponding":false,"raw_author_name":"Bashar Nuseibeh","raw_affiliation_strings":["Lero, University of Limerick, Ireland","The Open University, Milton Keynes, United Kingdom","The Open University","University of Limerick"],"affiliations":[{"raw_affiliation_string":"Lero, University of Limerick, Ireland","institution_ids":["https://openalex.org/I230495080"]},{"raw_affiliation_string":"The Open University, Milton Keynes, United Kingdom","institution_ids":["https://openalex.org/I204136569"]},{"raw_affiliation_string":"The Open University","institution_ids":["https://openalex.org/I204136569"]},{"raw_affiliation_string":"University of Limerick","institution_ids":["https://openalex.org/I230495080"]}]}],"institutions":[],"countries_distinct_count":4,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5039795147"],"corresponding_institution_ids":["https://openalex.org/I4210105243"],"apc_list":null,"apc_paid":null,"fwci":1.4707,"has_fulltext":false,"cited_by_count":15,"citation_normalized_percentile":{"value":0.82505047,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"259","last_page":"270"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10260","display_name":"Software Engineering Research","score":0.9950000047683716,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10430","display_name":"Software Engineering Techniques and Practices","score":0.9894999861717224,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/reinsurance","display_name":"Reinsurance","score":0.7403634190559387},{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.7122941017150879},{"id":"https://openalex.org/keywords/risk-assessment","display_name":"Risk assessment","score":0.6557483673095703},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.6189243793487549},{"id":"https://openalex.org/keywords/identification","display_name":"Identification (biology)","score":0.5392545461654663},{"id":"https://openalex.org/keywords/cover","display_name":"Cover (algebra)","score":0.46160855889320374},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.46007710695266724},{"id":"https://openalex.org/keywords/actuarial-science","display_name":"Actuarial science","score":0.4523889720439911},{"id":"https://openalex.org/keywords/it-risk-management","display_name":"IT risk management","score":0.4330139756202698},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.3182748854160309},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.205255925655365},{"id":"https://openalex.org/keywords/accounting","display_name":"Accounting","score":0.19323047995567322},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.18135124444961548}],"concepts":[{"id":"https://openalex.org/C166970017","wikidata":"https://www.wikidata.org/wiki/Q476118","display_name":"Reinsurance","level":2,"score":0.7403634190559387},{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.7122941017150879},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.6557483673095703},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.6189243793487549},{"id":"https://openalex.org/C116834253","wikidata":"https://www.wikidata.org/wiki/Q2039217","display_name":"Identification (biology)","level":2,"score":0.5392545461654663},{"id":"https://openalex.org/C2780428219","wikidata":"https://www.wikidata.org/wiki/Q16952335","display_name":"Cover (algebra)","level":2,"score":0.46160855889320374},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.46007710695266724},{"id":"https://openalex.org/C162118730","wikidata":"https://www.wikidata.org/wiki/Q1128453","display_name":"Actuarial science","level":1,"score":0.4523889720439911},{"id":"https://openalex.org/C95609273","wikidata":"https://www.wikidata.org/wiki/Q5975208","display_name":"IT risk management","level":3,"score":0.4330139756202698},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.3182748854160309},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.205255925655365},{"id":"https://openalex.org/C121955636","wikidata":"https://www.wikidata.org/wiki/Q4116214","display_name":"Accounting","level":1,"score":0.19323047995567322},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.18135124444961548},{"id":"https://openalex.org/C59822182","wikidata":"https://www.wikidata.org/wiki/Q441","display_name":"Botany","level":1,"score":0.0},{"id":"https://openalex.org/C78519656","wikidata":"https://www.wikidata.org/wiki/Q101333","display_name":"Mechanical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1007/978-3-642-21424-0_21","is_oa":false,"landing_page_url":"https://doi.org/10.1007/978-3-642-21424-0_21","pdf_url":null,"source":{"id":"https://openalex.org/S4210175514","display_name":"IFIP International Federation for Information Processing/IFIP","issn_l":"1571-5736","issn":["1571-5736","1861-2288"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319900","host_organization_name":"Springer Science+Business Media","host_organization_lineage":["https://openalex.org/P4310319900","https://openalex.org/P4310319965"],"host_organization_lineage_names":["Springer Science+Business Media","Springer Nature"],"type":"book series"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IFIP Advances in Information and Communication Technology","raw_type":"book-chapter"},{"id":"pmh:oai:HAL:hal-01567605v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01567605","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"26th International Information Security Conference (SEC), Jun 2011, Lucerne, Switzerland. pp.259-270, &#x27E8;10.1007/978-3-642-21424-0_21&#x27E9;","raw_type":"Conference papers"},{"id":"pmh:oai:publica.fraunhofer.de:publica/373794","is_oa":false,"landing_page_url":"https://publica.fraunhofer.de/handle/publica/373794","pdf_url":null,"source":{"id":"https://openalex.org/S4306400318","display_name":"Fraunhofer-Publica (Fraunhofer-Gesellschaft)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4923324","host_organization_name":"Fraunhofer-Gesellschaft","host_organization_lineage":["https://openalex.org/I4923324"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"conference paper"}],"best_oa_location":{"id":"pmh:oai:HAL:hal-01567605v1","is_oa":true,"landing_page_url":"https://inria.hal.science/hal-01567605","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"26th International Information Security Conference (SEC), Jun 2011, Lucerne, Switzerland. pp.259-270, &#x27E8;10.1007/978-3-642-21424-0_21&#x27E9;","raw_type":"Conference papers"},"sustainable_development_goals":[{"display_name":"Decent work and economic growth","score":0.5199999809265137,"id":"https://metadata.un.org/sdg/8"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W18112494","https://openalex.org/W110993677","https://openalex.org/W171045190","https://openalex.org/W1533973639","https://openalex.org/W1607721910","https://openalex.org/W1843840945","https://openalex.org/W1911429046","https://openalex.org/W1977934076","https://openalex.org/W1982847337","https://openalex.org/W2003422966","https://openalex.org/W2007906297","https://openalex.org/W2037104605","https://openalex.org/W2040530961","https://openalex.org/W2060268744","https://openalex.org/W2068673775","https://openalex.org/W2096528745","https://openalex.org/W2125936181","https://openalex.org/W2137826437","https://openalex.org/W2139878064","https://openalex.org/W2146537463","https://openalex.org/W2339802317","https://openalex.org/W2369295637","https://openalex.org/W2496413842","https://openalex.org/W2739904528","https://openalex.org/W4285719527"],"related_works":["https://openalex.org/W3041075136","https://openalex.org/W2382428605","https://openalex.org/W2032350017","https://openalex.org/W1994534067","https://openalex.org/W3006961029","https://openalex.org/W167503854","https://openalex.org/W3015334340","https://openalex.org/W2110414780","https://openalex.org/W2366499309","https://openalex.org/W2363314452"],"abstract_inverted_index":null,"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":3},{"year":2019,"cited_by_count":1},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":1},{"year":2012,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}