Security Management
Security Management covers all measures with the aim for systematical detection, analysis, assessment, observation and control of risks. Exhaustive Risk Management generally requires an exhaustive overview about the managed environment. This applies to both, Risk Management for private information (privacy management) and Risk Management for institutional IT infrastructures (security management).
The relevant information for risk management is often distributed. In privacy management the relevant information is distributed over several external entities (such as authorities, social networks and institutions) which are mutating, in foreign control and not transparent. In security management the relevant information is distributed over several systems (such as servers, network components and third party services) that are heterogeneous, complex and coupled.
We are facing two challenges that are to be solved by our research: Gathering a structural overview on the managed environment and collecting the information of the managed environment.
Projects Partners and Co-operations
Name | Partner |
---|---|
Custodian I | Siemens CIT |
Custodian II | Siemens IT |
Publications