Information Security Risk Assessment Analysis of Quantitative Methods

2014 ◽  
Vol 687-691 ◽  
pp. 2015-2018
Author(s):  
Liang Hu ◽  
Yun Gen Hu
Keyword(s):  
Risk Assessment ◽  
Information Technology ◽  
Information Systems ◽  
Information Security ◽  
Quantitative Methods ◽  
Security Risk ◽  
Widespread Application ◽  
Information Security Risk ◽  
Security Risk Assessment ◽  
Social Dependence

The development of information technology is increasingly widespread application of information systems and social dependence on information systems is constantly increasing. Therefore, information security has become an important aspect of the development of information technology has an important impact on economic development and social security. Effective information security risk assessment is an important measure to improve information technology.

Grey Evaluation Method on Security Risk Assessment of Power Information System

2010 ◽  
Vol 29-32 ◽  
pp. 2157-2163
Author(s):  
Ren Liu ◽  
Dong Xiao Niu
Keyword(s):  
Risk Assessment ◽  
Information System ◽  
Information Security ◽  
Electric Power ◽  
Quantitative Methods ◽  
Evaluation Method ◽  
Electricity Production ◽  
Security Risk ◽  
Information Security Risk ◽  
Security Risk Assessment

As information technology is widely used in electric power field, security risks penetrate into all aspects of electricity production and operation, meanwhile, complexity of electric power information system make it's very difficult to guard against security risk. Information security risk assessment is the foundation and the precondition of information system security. In this paper, combining long-term power information security supervision practice, we give a multi - hierarchy and multi - attribute index system of information security risk evaluation, and point out these indexes are characterized with grey, fuzzy and difficult to quantify. Then, the analytic hierarchy process (AHP) and the theory of grey system are introduced in setting up a comprehensive evaluation model, we obtain the final score using the information fusion of different experts. Additionally, an application example is used to illustrate the availability of the proposed evaluation method. The result shows that grey evaluation which combines advantages of the qualitative and quantitative methods can be applied to risk evaluate of information system more accurately and scientifically. Meanwhile the evaluation results can help supervisors judge which is the necessity to improve.

scholarly journals Method of Information Security Risk Assessment Based on Improved Fuzzy Theory of Evidence

2018 ◽  
Vol 14 (03) ◽  
pp. 188 ◽  
Author(s):  
Xuepeng Huang ◽  
Wei Xu
Keyword(s):  
Risk Assessment ◽  
Information Systems ◽  
Information Security ◽  
Fuzzy Sets ◽  
Fuzzy Theory ◽  
Security Risk ◽  
Basic Probability ◽  
Information Security Risk ◽  
Security Risk Assessment ◽  
Theory Of Evidence

<p>A method based on improved fuzzy theory of evidence was presented to solve the problem that there exist all kinds of uncertainty in the process of information security risk assessment. The hierarchy model for the information systems risk assessment was established firstly, and then fuzzy sets were introduced into theory of evidence. The basic probability assignments were constructed using the membership function of fuzzy sets, and the basic probability assignments were determined. Moreover, weight coefficients were calculated using entropy weight and empirical factor, which combined the objective weights with the subjective ones, and improved the validity and reliability. An illustration example indicates that the method is feasible and effective, and provides reasonable data for constituting the risk control strategy of the information systems security.</p>

Sign in / Sign up

Export Citation Format

Share Document