all InfoSec news
Identifying and Quantifying Trade-offs in Multi-Stakeholder Risk Evaluation with Applications to the Data Protection Impact Assessment of the GDPR. (arXiv:2207.07385v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Cybersecurity risk management consists of several steps including the
selection of appropriate controls to minimize risks. This is a difficult task
that requires to search through all possible subsets of a set of available
controls and identify those that minimize the risks of all stakeholders. Since
stakeholders may have different perceptions of the risks (especially when
considering the impact of threats), conflicting goals may arise that require to
find the best possible trade-offs among the various needs. In this work, …
applications assessment data data protection data protection impact assessment gdpr impact protection risk trade