Enterprise integrity modeling
First Claim
1. A computer program product, tangibly embodied in an information carrier, for a knowledge processing system, the computer program product being operable to cause data processing apparatus to:
- receive asset data representing a set of assets, the asset data including a respective value for each asset in the set of assets having a value;
receive threat data representing a set of threats;
each threat in the set of threats potentially reducing the value of one or more of the assets in the set of assets;
receive measures data representing a set of measures;
each measure in the set of measures protecting the value of one or more assets from one or more threats;
receive assessment data representing one or more assessments;
each assessment rating one or more measures; and
calculate an implementation level for each measure based upon the assessment data.
2 Assignments
0 Petitions
Accused Products
Abstract
Methods and apparatus, including computer program products, for risk assessment and analysis In one general aspect, asset data representing a set of assets is received, the asset data includes a respective value for each asset in the set of assets having a value. Threat data representing a set of threats is received; each threat in the set of threats potentially reduces the value of one or more of the assets in the set of assets. Measures data representing a set of measures is received; each measure in the set of measures protects the value of one or more assets from one or more threats. Assessment data representing one or more assessments is received; each assessment rates one or more measures. An implementation level for each measure is calculated based upon the assessment data.
-
Citations
20 Claims
-
1. A computer program product, tangibly embodied in an information carrier, for a knowledge processing system, the computer program product being operable to cause data processing apparatus to:
-
receive asset data representing a set of assets, the asset data including a respective value for each asset in the set of assets having a value;
receive threat data representing a set of threats;
each threat in the set of threats potentially reducing the value of one or more of the assets in the set of assets;
receive measures data representing a set of measures;
each measure in the set of measures protecting the value of one or more assets from one or more threats;
receive assessment data representing one or more assessments;
each assessment rating one or more measures; and
calculate an implementation level for each measure based upon the assessment data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A computer-implemented method comprising:
-
receiving asset data representing a set of assets, the asset data including a respective value for each asset in the set of assets having a value;
receiving threat data representing a set of threats;
each threat in the set of threats potentially reducing the value of one or more of the assets in the set of assets;
receiving measures data representing a set of measures;
each measure in the set of measures protecting the value of one or more assets from one or more threats;
receiving assessment data representing one or more assessments;
each assessment rating one or more measures; and
calculating an implementation level for each measure based upon the assessment data. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A system comprising:
-
means for receiving asset data representing a set of assets, the asset data including a respective value for each asset in the set of assets having a value;
means for receiving threat data representing a set of threats;
each threat in the set of threats potentially reducing the value of one or more of the assets in the set of assets;
means for receiving measures data representing a set of measures;
each measure in the set of measures protecting the value of one or more assets from one or more threats;
means for receiving assessment data representing one or more assessments;
each assessment rating one or more measures; and
means for calculating an implementation level for each measure based upon the assessment data. - View Dependent Claims (17, 18, 19, 20)
-
Specification