[HN Gopher] Open-sourcing Riskquant, a library for quantifying risk ___________________________________________________________________ Open-sourcing Riskquant, a library for quantifying risk Author : el_duderino Score : 61 points Date : 2020-03-09 19:07 UTC (3 hours ago) (HTM) web link (netflixtechblog.com) (TXT) w3m dump (netflixtechblog.com) | rubyfan wrote: | This seems like applying insurance modeling to security. Is this | a new way of looking at risk or a reinvention? | Eridrus wrote: | This is part of an attempt to make information security risk | modelling more quantitative that has been going on for a few | years. There's very little in the way of large scale data to | really back most of this up, but actually putting numbers to | things is significant progress IMO. | im_down_w_otp wrote: | Looks like parts of FMEA w/ some specific measurements to | inform occurance & severity. | fancyfredbot wrote: | It doesnt seem to have an input for correlation between the loss | scenarios? That would affect expected loss a lot. | leecb wrote: | Requires registration to read. | | Tab closed. | thenightcrawler wrote: | Nassim Nicholas Taleb is enraged by this! | rq1 wrote: | Why would he be? | | I suppose it is tempting, if the only tool you have is a | hammer, to treat everything as if it were a nail. ___________________________________________________________________ (page generated 2020-03-09 23:00 UTC)