Acceptable Risk
Jump to navigation
Jump to search
Contents
Definitions
European Definitions
ENISA
Acceptable risk is the level of Residual Risk that has been determined to be a reasonable level of potential loss/disruption for a specific system. [1]
Other International Definitions
UNISDR
The level of potential losses that a society or community considers acceptable given existing social, economic, political, cultural, technical and environmental conditions. [2]
According to UNISDR, acceptable risk in engineering terms is also used to assess and define the structural and non-structural measures that are needed in order to reduce
possible harm to people, property, services and systems to a chosen tolerated level, according to codes or “accepted practice” which are based on known probabilities of hazards and other factors.
Risiko yang dapat diterima: Tingkat potensi kerugian yang dianggap bisa diterima oleh sebuah masyarakat atau komunitas dengan mempertimbangkan kondisi sosial, ekonomi, politis, budaya, teknis dan lingkungan yang ada. [3]
Katanggap-tanggap: na Peligro Ang antas ng potensyal na mga pinsala na itinuturing ng lipunan o komunidad na katanggap-tanggap batay sa umiiral na mga kondisyong panlipunan, pang-ekonomya, pampulitika, kultural, teknikal at mga kalagayang pangkapaligiran. [4]
National Definitions
Canada
Acceptable risk is the level of potential losses that a society or community considers acceptable given existing social, economic, political, cultural, technical and environmental conditions.
Risque acceptable: niveau de pertes potentielles jugées acceptables par une société ou une collectivité compte tenu de ses conditions sociales, économiques, politiques, culturelles, techniques et environnementales. [5]
Risque acceptable: niveau de pertes potentielles jugées acceptables par une société ou une collectivité compte tenu de ses conditions sociales, économiques, politiques, culturelles, techniques et environnementales. [5]
United States
Acceptable risk is the level of risk at which, given costs and benefits associated with risk reduction measures, no action is deemed to be warranted at a given point in time. [6]
Standard Definition
IETF
A risk that is understood and tolerated by a system's user, operator, owner, or accreditor, usually because the cost or difficulty of implementing an effective countermeasure for the associated vulnerability exceeds the expectation of loss.[7]