Deliverable on currently established risk-assessment methods published
The TREsPASS project has a published an in-depth review of current standardised Risk Assessment methodologies as part of its Year 2 efforts. The public deliverable is available for download here.
The document lists and describes relevant international Information Security standards, and covers thereafter Risk Assessment methodologies, as well as any related tools. Owners, countries of origin, target organisations are also discussed for each individual method.
The document then attempts to map and compare the TRESPASS approach to Risk Assessment with that of established methodologies, both at a conceptual level and on the level of TREsPASS models and processes.