A formal approach for secured risk analysis in information security management.