Towards a Decision Model Based on Trust and Security Risk Management

Baptiste Alcade, Eric Dubois, Sjouke Mauw, Nicolas Mayer, Saša Radomirović

Research output: Chapter in Book/Report/Conference proceedingConference contribution

6 Citations (Scopus)

Abstract

From choosing the daily lunch menu to buying or selling stock options, decisions have to be made every day. In general, due to incomplete information, making a decision carries a risk. Typically, such risks are mitigated through risk management.

However, risk is not the only element involved in the decision process. When the decision to be made concerns an interaction between two entities, trust plays an important role. Trust, in such an interaction, is a prediction of one entity's reliance on the other entity to perform a certain action.

In this paper we formulate a trust reference model and take a first step towards a decision model by combining the trust model with an existing risk model. The decision model is illustrated by an example in the e-banking domain.
Original languageEnglish
Title of host publicationInformation Security 2009
Subtitle of host publicationProceedings of the Seventh Australasian Information Security Conference (AISC 2009), Wellington, New Zealand, January 2009
EditorsLjiljana Brankovic, Willy Susilo
Place of PublicationSydney
PublisherAustralian Computer Society
Pages61-69
Number of pages9
ISBN (Print)9781920682798
Publication statusPublished - 2009
EventSeventh Australasian Information Security Conference - Wellington, New Zealand
Duration: 20 Jan 200921 Jan 2009

Publication series

NameConferences in Research and Practice in Information Technology
Volume98

Conference

ConferenceSeventh Australasian Information Security Conference
Abbreviated titleAISC 2009
CountryNew Zealand
CityWellington
Period20/01/0921/01/09

Fingerprint Dive into the research topics of 'Towards a Decision Model Based on Trust and Security Risk Management'. Together they form a unique fingerprint.

  • Cite this

    Alcade, B., Dubois, E., Mauw, S., Mayer, N., & Radomirović, S. (2009). Towards a Decision Model Based on Trust and Security Risk Management. In L. Brankovic, & W. Susilo (Eds.), Information Security 2009: Proceedings of the Seventh Australasian Information Security Conference (AISC 2009), Wellington, New Zealand, January 2009 (pp. 61-69). (Conferences in Research and Practice in Information Technology; Vol. 98). Australian Computer Society.