Skip to Main content Skip to Navigation
Conference papers

Mapping between Classical Risk Management and Game Theoretical Approaches

Abstract : In a typical classical risk assessment approach, the probabilities are usually guessed and not much guidance is provided on how to get the probabilities right. When coming up with probabilities, people are generally not well calibrated. History may not always be a very good teacher. Hence, in this paper, we explain how game theory can be integrated into classical risk management. Game theory puts emphasis on collecting representative data on how stakeholders assess the values of the outcomes of incidents rather than collecting the likelihood or probability of incident scenarios for future events that may not be stochastic. We describe how it can be mapped and utilized for risk management by relating a game theoretically inspired risk management process to ISO/IEC 27005. This shows how all the steps of classical risk management can be mapped to steps in the game theoretical model, however, some of the game theoretical steps at best have a very limited existence in ISO/IEC 27005.
Complete list of metadatas

Cited literature [18 references]  Display  Hide  Download

https://hal.inria.fr/hal-01596184
Contributor : Hal Ifip <>
Submitted on : Wednesday, September 27, 2017 - 1:49:08 PM
Last modification on : Wednesday, September 27, 2017 - 1:52:00 PM
Long-term archiving on: : Thursday, December 28, 2017 - 1:47:44 PM

File

978-3-642-24712-5_12_Chapter.p...
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Lisa Rajbhandari, Einar Snekkenes. Mapping between Classical Risk Management and Game Theoretical Approaches. 12th Communications and Multimedia Security (CMS), Oct 2011, Ghent, Belgium. pp.147-154, ⟨10.1007/978-3-642-24712-5_12⟩. ⟨hal-01596184⟩

Share

Metrics

Record views

86

Files downloads

254