Browse
We’re here to help

Find guidance on Author Services

Search
Browse
We’re here to help

Find guidance on Author Services

Home
All Journals
Journal of Risk Research
List of Issues
Volume 22, Issue 2
GIRA: a general model for incident risk ....

Search in:

Advanced search

Journal of Risk Research Volume 22, 2019 - Issue 2

Submit an article Journal homepage

310

Views

CrossRef citations to date

Altmetric

Articles

GIRA: a general model for incident risk analysis

Aitor Couce-VieiraUniversidad Rey Juan Carlos, Madrid, Spain;Instituto de Ciencias Matemáticas (ICMAT), Consejo Superior de Investigaciones Científicas (CSIC), Madrid, SpainCorrespondence[email protected]

David Rios InsuaInstituto de Ciencias Matemáticas (ICMAT), Consejo Superior de Investigaciones Científicas (CSIC), Madrid, Spain

Siv Hilde HoumbSecure-NOK AS, Hamar, Norway

Pages 191-208 | Received 05 Apr 2017, Accepted 29 Jun 2017, Published online: 11 Sep 2017

Cite this article
https://doi.org/10.1080/13669877.2017.1372509
CrossMark

Sample our Communication Studies journals, sign in here to start your access, 2013 & 2014 volumes FREE to you for 14 days

Full Article
Figures & data
References
Citations
Metrics
Reprints & Permissions
Read this article /doi/full/10.1080/13669877.2017.1372509?needAccess=true

Abstract

Most existing risk analysis methods focus on analysing risks that a system might face throughout its life. However, there is no explicit method for risk analysis during incidents. Approaches such as bow-ties and attack trees provide reliable information about triggers and escalation of incidents, but do not cover risk evaluation. Risk matrices include the entire risk analysis process; however, their risk evaluation approach is oversimplified. This paper presents a General Model for Incident Risk Analysis, which formalises the incident risk analysis process through an influence diagram. Our aim is to provide a decision support model that generates reliable risk information and enhances incident risk evaluation.

Keywords:

Incident
risk analysis
risk evaluation
decision support
influence diagram

Notes

1. For instance, in cybersecurity, following the McCumber Cube (McCumber Citation1991), we can express consequences as changes in the availability, integrity or confidentiality of data.

2. Although this node represents a decision, it is not modelled as a decision node because we are not analysing that decision.

McCumber, John. 1991. “Information Systems Security: A Comprehensive Model.” In Proceedings of the 14th NIST-NCSC National Computer Security Conference, Washington, DC: 328–337.

Google Scholar

Log in via your institution

Access through your institution

Log in to Taylor & Francis Online

Shibboleth

Log in to Taylor & Francis Online

Username Password

Forgot password?

Keep me logged in (not suitable for shared devices).

You will otherwise be logged out automatically, after a limited period, and will need to log in again.

Restore content access

Restore content access for purchases made as guest

Purchase options * Save for later Item saved, go to cart

PDF download + Online access

48 hours access to article PDF & online version
Article PDF can be downloaded
Article PDF can be printed

USD 53.00 Add to cart

PDF download + Online access - Online Checkout

Issue Purchase

30 days online access to complete issue
Article PDFs can be downloaded
Article PDFs can be printed

USD 420.00 Add to cart

Issue Purchase - Online Checkout

* Local tax will be added as applicable

Share icon
Back to Top

Related Research

People also read lists articles that other readers of this article have read.

Recommended articles lists articles that we recommend and is powered by our AI driven recommendation engine.

Cited by lists all citing articles based on Crossref citations.
Articles with the Crossref icon will open in a new tab.

People also read
Recommended articles
Cited by

To cite this article:

Reference style: APA Chicago Harvard

Citation copied to clipboard

Reference styles above use APA (6th edition), Chicago (16th edition) & Harvard (10th edition)

Download citation

Download a citation file in RIS format that can be imported by citation management software including EndNote, ProCite, RefWorks and Reference Manager.

Choose format: RIS BibTex RefWorks Direct Export

Choose options: Citation Citation & abstract Citation & references

Information for

Authors
R&D professionals
Editors
Librarians
Societies

Open access

Overview
Open journals
Open Select
Dove Medical Press
F1000Research

Opportunities

Reprints and e-prints
Advertising solutions
Accelerated publication
Corporate access solutions

Help and information

Help and contact
Newsroom
All journals
Books

Keep up to date

Sign me up

Taylor and Francis Group Facebook page

Taylor and Francis Group X Twitter page

Taylor and Francis Group Linkedin page

Taylor and Francis Group Youtube page

Taylor and Francis Group Weibo page

Registered in England & Wales No. 3099067
5 Howick Place | London | SW1P 1WG

Your download is now in progress and you may close this window

Did you know that with a free Taylor & Francis Online account you can gain access to the following benefits?

Choose new content alerts to be informed about new research of interest to you
Easy remote access to your institution's subscriptions on any device, from any location
Save your searches and schedule alerts to send you new results
Export your search results into a .csv file to support your research

Have an account?
Login now Don't have an account?
Register for free

Login or register to access this feature

Have an account?
Login now Don't have an account?
Register for free

Choose new content alerts to be informed about new research of interest to you
Easy remote access to your institution's subscriptions on any device, from any location
Save your searches and schedule alerts to send you new results
Export your search results into a .csv file to support your research