APPENDIX A TAXONOMIES AND DESCRIPTIONS
Taxonomies are simply ways of ordering or classifying information, and can help us to understand concepts through either diagrams or written explanations. For clarity, this Appendix includes both forms for the following areas:
It should be noted that these are simply the author’s interpretation, and are not necessarily complete in terms of all possibilities, or to the deepest level of abstraction.
Information risk is the combination of the impact or consequence of a threat or hazard on an information asset and likelihood or probability of its doing so. Figure A.1 illustrates the key components.
Figure A.1 An overall ...