Abstract:
Information security risks analysis methods are considered in accordance with GOST R ISO / IEC 27005-10. A comparative analysis of Ra2 software, Vsrisk software and MSAT software are carried out based on the selected criteria.
Keywords:information security, analysis and risk management, Ra2, Vsrisk, MSAT, threats, vulnerabilities, control mechanisms.