[Back]

A. Ekelhart, S. Fenz, T. Neubauer, E. Weippl:
"Formal Threat Descriptions for Enhancing Governmental Risk Assessment";
Talk: First International Conference on Theory and Practice of Eletronic Governance (ICEGOV2007), Macau; 2007-12-10 - 2007-12-13; in: "Proceedings of the First International Conference on Theory and Practice of Eletronic Governance (ICEGOV2007)", ACM Press, (2007), ISBN: 978-1-59593-822-0; 40 - 43.

Compared to the last decades, we have recently seen more and more governmental applications which are provided via the Internet directly to the citizens. Due to the long history of IT systems in the governmental sector and the connection of these legacy systems to newer technologies, most governmental institutions are faced with a heterogeneous IT environment. More and more governmental duties and responsibilities rely solely on IT systems which have to be highly dependable to ensure the proper operation of these governmental services. An increasing amount of software vulnerabilities and the generally heightened physical threat level due to terror attacks and natural disasters demand for a holistic IT security approach which captures, manages, and secures the entire governmental IT infrastructure. Our contribution is (1) a novel inventory solution, (2) a mechanism to embed the virtual IT infrastructure data into a physical model provided by our security ontology, and (3) a methodology to automatically identify threatened assets and to reason on the current security status based on formal threat definitions taking software configurations and physical locations into account. A prototypical implementation of the aforementioned concepts shows how these concepts help governmental institutions to secure their IT infrastructure in a holistic and systematic way to fortify their IT systems in an appropriate way against current and future threats.