Can S.K.R.A.M. Support Quantified Risk Analysis of Computer Related Crime?
By Steve Frank
In Partial Fulfillment of the Requirements in the Honors Research Class at the Rochester Institute of Technology
February, 2003
Abstract According to some computer security specialists, a good approach to understanding and deterring computer and computer-related crime is achieved through understanding the skills, knowledge, resources, authority, and motive of a suspected offender. By carefully examining a particular suspect’s resume and past using the S.K.R.A.M. model, it is possible to determine their potential for committing a computer or computer related crime and to estimate the relative severity of an attack.