diff --git a/AADLSecPaper.tex b/AADLSecPaper.tex
index 8232c7b..1f7092e 100644
--- a/AADLSecPaper.tex
+++ b/AADLSecPaper.tex
@@ -181,13 +181,16 @@ framework to this verification and selection process, one needs to first be able
 that a relatively deterministic formula can be used to obtain a meaningful metric.
 
 \section{Related Work}
+In this section, the paper examines the traditional definition of risk followed by a brief explanation of the work by Ferrante et.~al. in preparation for the proposition of defining security risk.
+
+\subsection{Traditional Risk}
 \label{sec:traditionalRisk}
 % Risk traditionally defined
 Risk is generally defined as the potential of gaining or losing something of value.  Value can be seen as physical health, emotional well-being, financial wealth, etc.  Another definition of risk involves viewing risk 
 as an intentional interaction made with some uncertainty.  In this scenario, uncertainty is defined as a potential, unpredictable, and uncontrollable outcome; risk is seen as a consequence of action taken in spite of some given uncertainty.  Depending on the point-of-view of the individual measuring risk, its definition and application can vary a significant amount.  
 %For example, risk can be the analysis of expected loss %(as shown in Equation~\ref{equ:expectedLoss}).  
 %Risk is not a certainty of an event occurring, but a probability that it will happen.  
-But to develop an equation for risk one must first define the potential of events and the losses that could be incurred.  Possibility, in risk, depends on two aspects: (1) threat and (2) vulnerability ~\cite{Ferrante2013}.  Threat is defined as the cause of risk (e.g. fire, kidnapping, leakage of sensitive information, etc.).  Vulnerability is defined as the existing flaw or weakness which can be exploited and result in an accident.  The concept of risk states that risk may result in losses for an agent, user, company, etc.  Losses occur because of the consequences of an accident (defined as Impact).  Depending on the impacted asset, `Impact' may be defined as a tangible (e.g. loss of revenue or financial penalties) or as intangible (e.g. loss of productivity or loss of reputation)~\cite{Mukhopadhyay2013}.  An `asset' can be defined as anything valuable to a user or organization or company.  An asset can be (1) a physical object, (2) secrete information, (3) business goal, etc.  As mentioned earlier, risk requires an element of probability, meaning that the probability value acts as a 0.00 -{}- 1.00 scale weight.  Putting everything together, risk is generally represented as follows: 
+But to develop an equation for risk one must first define the potential of events and the losses that could be incurred.  Possibility, in risk, depends on two aspects: (1) threat and (2) vulnerability ~\cite{Mukhopadhyay2013}.  Threat is defined as the cause of risk (e.g. fire, kidnapping, leakage of sensitive information, etc.).  Vulnerability is defined as the existing flaw or weakness which can be exploited and result in an accident.  The concept of risk states that risk may result in losses for an agent, user, company, etc.  Losses occur because of the consequences of an accident (defined as Impact).  Depending on the impacted asset, `Impact' may be defined as a tangible (e.g. loss of revenue or financial penalties) or as intangible (e.g. loss of productivity or loss of reputation)~\cite{Mukhopadhyay2013}.  An `asset' can be defined as anything valuable to a user or organization or company.  An asset can be (1) a physical object, (2) secrete information, (3) business goal, etc.  As mentioned earlier, risk requires an element of probability, meaning that the probability value acts as a 0.00 -{}- 1.00 scale weight.  Putting everything together, risk is generally represented as follows: 
 \begin{equation} \label{equ:riskDefinition}
 	Risk = Probability * Impact
 \end{equation}
@@ -215,6 +218,12 @@ Section~\ref{sec:attackDefense}.
 
 One can measure risk from the probability of a failure of a given component (e.g. firewall, anti-virus, both), the loss amount for each component failure (e.g. firewall, anti-virus, both, none), and the expected loss (average loss)~\cite{Mukhopadhyay2013}.  In this manner an individual can measure risk for a larger, interconnected system, but as the scope of the risk examination changes, so does do the methods by which risk is measured.
 
+\subsection{Quantitative and Qualitative Security}
+% Summary and application of the Ferrante work
+Aggregate all the Ferrante summary stuff here you idiot!
+
+\section{Shit that needs to be elsewhere}
+
 % Incorporating security into risk calculations
 Different methods by which security can be incorporated into risk management include: as a weight representing implementation of security solutions, as a probability that a security concern is met or attacked, the 
 possibility of a security failure, etc.  Security levels can also be interdependent depending on implementation and scenario/situation.