- - SIR liburutegiko 2.0.6.R1 bertsioa argitaratua
- Bertsio berria erabilgarri 9.0 ekoizten dute
- Unibertsitate publikoak (%50 gehiago AnotaRCP barruan daude.
- Plataformak Cl@ve, identifikatzeko eta sinadura elektronikoa, hamar milioi erabiltzaile erregistratu ditu
- API SITNA en la oferta de soluciones de software libre del Centro de Transferencia de Tecnología
Analysis and risk management Tools for
- Short _ Name:
- Pillar combines the ICT assets a system with the possible threats, calculated risks and we can incorporate safeguards to reduce the risk to residual values acceptable. this allows us to establish confidence in the system.
- Helburuko egitea:
- Public Administration Any
- Installable product
- Solution of Type:
- Status of the Solution:
- Organic arloa:
- Laguntza arloa
- Security management of identities and infrastructure
- Functional arloa:
- Government and public sector
- Owner Licence
- Interoperability level:
- Programming language:
- Operating system:
- MAC, Linux, Windows,
Hori helburu jakinaren zerbitzuan baitago.
The development of PILAR is closely associated with the use of digital, electronic and computer tools, which has obvious benefits for users but also involves risks that must be adequately managed through security measures that encourage trust in the use of these tools.
The goals tool of the ZUTABE dira:
- To analyse risks using the MAGERIT risk assessment methodology and in compliance with the ISO/IEC 27005 risk management standard.
- A security design To improvement plana.
PILAR is a computer application compiling system assets, their interdependence relations and their value for the organisation. After gathering this information for a deeper understanding of the system, this tool enables users to enter potential threats to data availability, integrity, confidentiality, authenticity and traceability to assess the potential risks for the system.
Once the risks are identified, a series of safeguards can be implemented, then estimating residual risk. This risk assessment method is an ongoing, recurring process whereby the protection system is improved on a regular basis to deal with new risks and build trust for both managers and users.