In this paper, presented at the International Conference on Computer Mediated Social Networking (ICCMSN), we propose a new approach for the assessment of Free and Open Source Software (F/OSS) based on social networking and trust relationships within these networks. In this approach, an automated algorithm offers a user who is looking for an appropriate F/OSS piece of software for a specific application a list of recommended software using information inferred from the trust embedded in this user’s social network. We argue that this method would generate more relevant and meaningful recommendations based on the user preferences and facilitate choice among the ever increasing number of available F/OSS software.

We are conducting a new academic study about the status of Information Security in organisations in which your participation will be highly appreciated.

Your contributions will have significant value to this research project which aims to construct a holistic picture of organisational information security practices.

The survey should not take more than 10 minutes of your time.

CLICK HERE TO BEGIN THE SURVEY

Or alternatively, copy and paste this entire link into your Internet browser:
http://www.surveymonkey.com/s.aspx?sm=EwrpO5Xfn6kJ4AfGI8n13g_3d_3d

In this report, which was published recently by the European Network and Information Security Agency (ENISA), we develop a possible risk assessment and management method appropriate for emerging and future risks. In order to achieve this purpose, a systematic approach was adopted (based on Soft Systems Methodology) to devise evaluation criteria for risk assessment and management methods. An extensive evaluation of existing methods against these criteria was conducted to assess their suitability to tackle emerging and future risk. Detailed requirements were later developed to extend existing risk assessment and management methods to cater for emerging and future risks. We propose such extensions to be developed in a modular approach to facilitate usability and compatibility with different risk assessment and management methods.