A formalisation of an information infrastructure security risk analysis approach
Faculty of Computing, Health and Science
School of Computer and Security Science
With the protection of Information Infrastructure becoming a priority for all levels of management, there is a need for a security methodology to deal with the new and unique attack threats and vulnerabilities associated with the new information technology security paradigm. The formalisation of the concept of a fourth generation security risk analysis method which copes with the shift from computer security to information warfare is the next step toward handling security risk at all levels, This paper will present the formalised procedure of fourth generation models and their application to infrastructure protection and the associated advantages of this methodology.