Kondakçı, Süleyman2023-06-162023-06-1620089.78E+12https://hdl.handle.net/20.500.14365/3957Gazimagusa Teknopark, TRNC;Ministry of Education and Culture, TRNC;North Cyprus Turkcell, TRNC1st International Conference on Security of Information and Networks, SIN 2007 -- 7 May 2007 through 10 May 2007 -- Gazimagusa -- 103950This paper presents an abstract concept of security planning processes using a simple probabilistic model to express conditional risk factors. This analytical work emphasizes relationships related to major security planning phases. The work discusses the chain of logical events that describe dependence in risk propagation. This unique work can provide a guidance for security planning and risk management applicable to various engineering fields. Especially, for security education, we need to provide approaches that are theoretically sound as well as practical and realistic. The risk analysis method provided by DARIS can also provide a theoretical basis in education of information security. © 2008 Atilla Elçi.eninfo:eu-repo/semantics/closedAccessRisk analysisRisk assessmentRisk managementAbstract conceptDependency analysisPlanning phasisPlanning processProbabilistic modelsRisk factorsRisk propagationSecurity planningSecurity risksSimple++Security of dataConference Object2-s2.0-84893167337