A Hybrid Model for Evaluation Computer Network Security Risk in Commercial Bank
Given there is a great deal of correlation among indicators in the process of computer network security risk assessment, the handling of correlation is of great significance for the effectiveness of risk assessment. In this paper, we propose a hybrid computer network security risk model based on the analytic hierarchical process and gray relational analysis theory. At fist, the weight of each indicator will be elicited by means of analytic hierarchical process. Further, gray relational analysis theory will be used for the final evaluation, which avoids subjective estimation of experts or managers of banking. Finally, the model is further demonstrated and validated via a case study, and the result implies that the assets and vulnerability may be the most important factor for network security management.