Author: The Attributer

The Attributer’s Blog – Owned

One of the thorniest issues in information security is the matter of ownership. Who is the owner of the data/information? In SABSA this is especially important because the owner will be the person who makes policy about how that data/information should be protected, against which threats, and for exploiting which opportunities. An owner is a domain authority for all data/information […]

The Attributer’s Blog – Identified

All human interactive protocols depend upon our ability to identify one another. In this article we examine identification in terms of SABSA Business Attributes. It seems at first glance to be extremely simple, but when you start to look closely, it is full of both subtlety and complexity. First of all we shall establish the concept of the core identity. […]

The Attributer’s Blog – Traceable

Traceable is a Business Attribute from the SABSA Business Attributes Taxonomy that is well established in many disciplines but is as yet immature in the field of information security and IT security. We are all familiar with it in our daily lives too. The Attributer has a wife who is exceptionally quick witted and who can process thoughts at a […]

The Attributer’s Blog – Supportable

This Business Attribute from the SABSA Business Attributes Taxonomy is one that deserves a great deal of attention with respect to every solution architecture. First let’s establish a conceptual framework within which business solutions are constructed. The essential goal of any such solution is to create ‘business value’ through what we call ‘value chains’. Supporting this goal we build a […]

The Attributer’s Blog – Valuable

In this issue we shall look at a SABSA Business Attribute that is especially slippery in its character: the attribute ‘valuable’. Value is measureable, but how reliable are those measurements? That’s the slippery bit. The concept of ‘value’ is closely coupled with risk. The concept of ‘risk appetite’ is also involved. This is best explored through a series of case […]