{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:33:28Z","timestamp":1750221208640,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":32,"publisher":"ACM","license":[{"start":{"date-parts":[[2018,11,15]],"date-time":"2018-11-15T00:00:00Z","timestamp":1542240000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2018,11,15]]},"DOI":"10.1145\/3277570.3277586","type":"proceedings-article","created":{"date-parts":[[2018,10,25]],"date-time":"2018-10-25T12:14:38Z","timestamp":1540469678000},"page":"1-6","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["Towards unambiguous IT risk definition"],"prefix":"10.1145","author":[{"given":"Maksim","family":"Goman","sequence":"first","affiliation":[{"name":"Johannes Kepler University, Linz, Austria"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,11,15]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Information Systems Audit and Control Association. 2012. COBIT 5 framework. ISACA.  Information Systems Audit and Control Association. 2012. COBIT 5 framework. ISACA."},{"key":"e_1_3_2_1_2_1","first-page":"6","article-title":"A unified framework for risk and vulnerability analysis and management covering both safety and security","volume":"92","author":"Aven Terje","year":"2007","journal-title":"Rel. Eng. & Sys. Safety"},{"key":"e_1_3_2_1_3_1","first-page":"6","article-title":"On how to define, understand and describe risk","volume":"95","author":"Aven Terje","year":"2010","journal-title":"Rel. Eng. & Sys. Safety"},{"key":"e_1_3_2_1_4_1","first-page":"7","article-title":"On the new ISO guide on risk management terminology","volume":"96","author":"Aven Terje","year":"2011","journal-title":"Rel. Eng. & Sys. Safety"},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1080\/13669870802488883"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ssci.2011.04.015"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","unstructured":"David Basin Patrick Schaller and Michael Schl\u00e4pfer. 2011. Applied Information Security: A Hands-on Approach. Springer.   David Basin Patrick Schaller and Michael Schl\u00e4pfer. 2011. Applied Information Security: A Hands-on Approach. Springer.","DOI":"10.1007\/978-3-642-24474-2"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1080\/13669870500118329"},{"key":"e_1_3_2_1_9_1","first-page":"1","article-title":"The anatomy of the squizzel: The role of operational definitions in representing uncertainty","volume":"85","author":"Cooke Roger","year":"2004","journal-title":"Rel. Eng. & Sys. Safety"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.5220\/0006545602070215"},{"key":"e_1_3_2_1_11_1","unstructured":"International Organization for Standardization. 2009. International standard ISO 31000:2009. Risk Management -- Principles and guidelines. ISO.  International Organization for Standardization. 2009. International standard ISO 31000:2009. Risk Management -- Principles and guidelines. ISO."},{"key":"e_1_3_2_1_12_1","unstructured":"International Organization for Standardization. 2009. International standard ISO\/IEC 27000:2009. Information technology - Security techniques -- Information security management systems -- Overview and vocabulary. ISO.  International Organization for Standardization. 2009. International standard ISO\/IEC 27000:2009. Information technology - Security techniques -- Information security management systems -- Overview and vocabulary. ISO."},{"key":"e_1_3_2_1_13_1","unstructured":"International Organization for Standardization. 2009. International standard ISO\/IEC 31010:2009. Risk management -- Risk assessment techniques. ISO.  International Organization for Standardization. 2009. International standard ISO\/IEC 31010:2009. Risk management -- Risk assessment techniques. ISO."},{"key":"e_1_3_2_1_14_1","unstructured":"International Organization for Standardization. 2011. International Standard ISO\/IEC 27005:2011. Information technology -- Security techniques -- Information security risk management. ISO.  International Organization for Standardization. 2011. International Standard ISO\/IEC 27005:2011. Information technology -- Security techniques -- Information security risk management. ISO."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.2469\/faj.v60.n6.2669"},{"key":"e_1_3_2_1_16_1","unstructured":"Douglas W. Hubbard. 2009. The failure of risk management: Why It's Broken and How to Fix It. Wiley.  Douglas W. Hubbard. 2009. The failure of risk management: Why It's Broken and How to Fix It. Wiley."},{"key":"e_1_3_2_1_17_1","unstructured":"Douglas W. Hubbard. 2014. How to measure anything (3rd. ed.). Vol. 275. Wiley.  Douglas W. Hubbard. 2014. How to measure anything (3rd. ed.). Vol. 275. Wiley."},{"key":"e_1_3_2_1_18_1","unstructured":"Project Management Institute. 2013. A Guide to the Project Management Body of Knowledge (PMBOK Guide) (5th. ed.). PMI.  Project Management Institute. 2013. A Guide to the Project Management Body of Knowledge (PMBOK Guide) (5th. ed.). PMI."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1111\/j.1539-6924.1981.tb01350.x"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1108\/ICS-05-2014-0033"},{"key":"e_1_3_2_1_21_1","unstructured":"Frank H. Knight. 1921. Risk Uncertainty and Profit (2nd ed.). Number 31 in Hart Schaffner and Marx Prize Essays. Houghton Mifflin Boston.  Frank H. Knight. 1921. Risk Uncertainty and Profit (2nd ed.). Number 31 in Hart Schaffner and Marx Prize Essays. Houghton Mifflin Boston."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"crossref","unstructured":"Matthew Leitch. 2010. ISO 31000:2009-The New International Standard on Risk Management. Risk analysis 30 6 (June 2010) 887--892.  Matthew Leitch. 2010. ISO 31000:2009-The New International Standard on Risk Management. Risk analysis 30 6 (June 2010) 887--892.","DOI":"10.1111\/j.1539-6924.2010.01397.x"},{"key":"e_1_3_2_1_23_1","unstructured":"William W. Lowrance. 1976. Of Acceptable Risk: Science and the Determination of Safety (1st ed.). William Kaufmann Los Altos USA.  William W. Lowrance. 1976. Of Acceptable Risk: Science and the Determination of Safety (1st ed.). William Kaufmann Los Altos USA."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"John McCumber. 2004. Assessing and managing security risk in IT systems: a structured methodology. Auaerbach Publications.   John McCumber. 2004. Assessing and managing security risk in IT systems: a structured methodology. Auaerbach Publications.","DOI":"10.1201\/9780203490426"},{"key":"e_1_3_2_1_25_1","unstructured":"The Stationery Office. 2011. Information Technology Infrastructure Library (2nd ed.). TSO.  The Stationery Office. 2011. Information Technology Infrastructure Library (2nd ed.). TSO."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1080\/136698798377303"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10796-016-9648-8"},{"key":"e_1_3_2_1_28_1","unstructured":"Mark Scherling. 2011. Practical risk management for the CIO. Whittles Publishing.  Mark Scherling. 2011. Practical risk management for the CIO. Whittles Publishing."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1108\/IMCS-05-2013-0041"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ijinfomgt.2015.11.009"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.cor.2005.06.013"},{"volume-title":"CENTERIS","year":"2011","author":"Vilarinho Sarah","key":"e_1_3_2_1_32_1"}],"event":{"name":"CECC 2018: Central European Cybersecurity Conference 2018","sponsor":["University of Maribor"],"location":"Ljubljana Slovenia","acronym":"CECC 2018"},"container-title":["Proceedings of the Central European Cybersecurity Conference 2018"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3277570.3277586","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3277570.3277586","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T01:39:38Z","timestamp":1750210778000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3277570.3277586"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,11,15]]},"references-count":32,"alternative-id":["10.1145\/3277570.3277586","10.1145\/3277570"],"URL":"https:\/\/doi.org\/10.1145\/3277570.3277586","relation":{},"subject":[],"published":{"date-parts":[[2018,11,15]]},"assertion":[{"value":"2018-11-15","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}