Question

Provide a specific scenario in which the following notions are all included: threat, vulnerability, risk, attack, countermeasures, cost-benefit analysis, risk mitigation, risk acceptance, risk transfer, and risk avoidance. Make sure that the scenario is not the one discussed in class.

(b) Discuss the relationship among them.

(c) Discuss the benefits of learning using this method.

Answer 1

Scenario: A new face swapping feature introduced by a social media platform.

b) Threat and vulnerability go hand in hand. This new feature can be used by wrong people for wrong doings disrupting normal purpose of use. Risk is directly proportional to vulnerability, the more the feature is vulnerable , the more risky it becomes. Countermeasures are also directly proportional to risks. The more risky the feature is , the more countermeasures have to be taken so as to keep the feature useful for the right people.

Cost - Benefit analysis helps the platform to understand how they can use this feature to grow their financial strength. It is inversely propertional to risk , threat and vulnerability . The less the risk , threat and vulnerability , the more it facinates and attarcts people to use this feature, because nobody will use it if there is a high risk of personal data getting hacked or compromised.

Lastly, risk mitigation is a process to reduce or decrease adverse affects of the feature so that users can enjoy it more. Risk acceptance, risk transfer, and risk avoidance are different types of risk mitigation actually.

Risk acceptance will be used only if the risk occuring probability is low.

Risk transfer will be used when the risk is handled by a third party and not the owner.

Risk avoidance will be used when when risk is very high , and it is more costly.

c) Benefits of learning in this method -

1. Helps in understanding different aspects of a product, content etc in digital or physical world based on different perspective.

2. Helps in understanding risks association among products, contents etc.

3. Helps in assessing situation and provide solution that is in the best interest of everyone.