The Nature of Risk
In our everyday lives, we
take risks. In crossing the road, eating oysters, or playing the lottery, we
take the chance that our actions may result in some negative resultsuch as
being injured, getting sick, or losing money. Consciously or unconsciously, we
weigh the benefits of taking the action with the possible losses that might
result. Just because there is a risk to a certain act we do not necessarily
avoid it; we may look both ways before crossing the street, but we do cross it.
In building and using computing systems, we must take a more organized and
careful approach to assessing our risks. Many of the systems we build and use
can have a dramatic impact on life and health if they fail. For this reason,
risk analysis is an essential part of security planning.
We cannot guarantee that our
systems will be risk free; that is why our security plans must address actions
needed should an unexpected risk become a problem. And some risks are simply
part of doing business; for example, as we have seen, we must plan for disaster
recovery, even though we take many steps to avoid disasters in the first place.
When we acknowledge that a
significant problem cannot be prevented, we can use controls to reduce the
seriousness of a threat. For example, you can back up files on your computer as
a defense against the possible failure of a file storage device. But as our
computing systems become more complex and more distributed, complete risk
analysis becomes more difficult and time consumingand more essential.
Related Topics
Privacy Policy, Terms and Conditions, DMCA Policy and Compliant
Copyright © 2018-2023 BrainKart.com; All Rights Reserved. Developed by Therithal info, Chennai.