| Authors: Baskerville, R. Date: 1996 Title: “A Taxonomy for Analyzing Hazards to Information Systems” Journal: Information Systems Security: Facing The Information Society of The 21st Century Pages: 167-176 |
| IS Security, Data Security, Disaster Plans, Computer Crime, IS Risk Management |
| Although information systems security is a serious problem, the nature of the constellation of the hazards facing these systems is still not well understood. The existing taxonomies used to analyze hazards of three types: Asset groupings or impact groupings, and convenience groupings. Most of these taxonomies are problematic because they focus on consequences of the hazard, rather than the nature of the hazard itself. This paper proposes a new taxonomy that analyzes deliberate and accidental hazards in different dimensions. The usefulness of the taxonomy is demonstrated by applying it to analyze a sample of hazard events. |