Dutch A&K Analysis
Afhankelijkheids- en kwetsbaarheidsanalyse (A&K analysis)
Product identity card
General information
Basic information to identify the product
Method or tool name : Dutch ministry of internal affairs
Vendor name : Dutch ministry of internal affairs
Country of origin : The Netherlands
Level of reference of the product
Details about the type of initiator of the product
Public / government organisation : Dutch ministry of internal affairs
Identification
Specify the phases this method supports and a short description
R.A. Method phases supported
- Risk identification : Handbook, part 2+3
- Risk analysis : Handbook, part 2+3
- Risk evaluation : Handbook, part 2+3
Brief description of the product
-
The method Afhankelijkheids- en Kwetsbaarheidsanalyse (A&K analysis) was developed in draft form by the Dutch public company RCC. The Dutch ministry of internal affairs completed the development in 1996 and published a handbook describing the method. The method has not been updated since that time. The A&K analysis is the unique and preferred method for risk analysis by Dutch government bodies since 1994. Besides the Dutch government, Dutch companies often use A&K analysis.
Lifecycle
Date of the first edition, date and number of actual version
Date of first release : About 1980
Date and identification of the last version : July, 1996, version 1.01
Useful links
Link for further information
Official web site : N/A
User group web site : N/A
Relevant web site : N/A
Other relevant sources : Handbook: 'Handleiding Afhankelijkheids- en Kwetsbaarheidsanalyse: stappenplan voor de uitvoering van een A&K-analyse' (in Dutch), version 1.01, Ministry of Internal Affairs, The Hague, 1996, The Netherlands
Languages
List the available languages that the tool supports
Availability in European languages : Dutch
Price
Specify the price for the method
- Free
Scope
Target organisations
Defines the most appropriate type of organisations the product aims at
-
Government, agencies
-
Large companies
-
SME
-
Commercial CIEs
-
Non commercial CIEs
Specific sector : N/A
Geographical spread
Information concerning the spread of this tool
Used in EU member states : The Netherlands
Used in non-EU member states : N/A
Level of detail
Specify the target kind of users
-
Management
-
Operational
-
Technical
License and certification scheme
Specify the licensing and certification schemes available for this method
Recognized licensing scheme : No
Existing certification scheme : No
Users viewpoint
Skills needed
Specify the level of skills needed to use and maintain the solution
-
To introduce : Basic
-
To use : Standard
-
To maintain : Basic
Consultancy support
Specify the kind of support available
Consultancy : Not necessary
Regulatory compliance
There is a given compliance of the product with international regulations
-
VIR (Dutch Government Information Security Act)
Compliance to IT standards
There is a compliance with a national or international standard
Trial before purchase
Details regarding the evaluation period (if any) before purchase of the product.
Availability : N.A.
Maturity level of the Information system
The product gives a means of measurement for the maturity of the information system security
It is possible to measure the I.S.S. maturity level : No
Tools supporting the method
List of tools that support the product
Non commercial tools
<ul >-
N/A
Commercial tools
-
Several, but not certified
Technical integration of available tools
Particular supporting tools (see C-7) can be integrated with other tools
Tools can be integrated with other tools : No
Organisation processes integration
The method provides interfaces to existing processes within the organisation
Method provides interfaces to other organisational processes : No
Flexible knowledge databases
It is possible to adapt a knowledge database specific to the activity domain of the company.
Method allows use of sector adapted databases : No