IT Risk Assessment: Quantitative and Qualitative Approach

被引：0

作者：

Rot, Artur ^{[1
]}

机构：

[1] Wroclaw Univ Econ, Business Informat Inst, Dept Management Informat Syst Engn, Wroclaw, Poland

来源：

WCECS 2008: WORLD CONGRESS ON ENGINEERING AND COMPUTER SCIENCE | 2008年

关键词：

IT risk; IT security risk analysis methods; qualitative risk assessment methods; quantitative risk assessment methods;

D O I：

暂无

中图分类号：

TP39 [计算机的应用];

学科分类号：

081203 ; 0835 ;

摘要：

IT risk management currently plays more and more important role in almost all aspects of contemporary organizations' functionality. It requires reliable and cyclical realization of its key task which is risk analysis. Literature of subject presents problems of risk analysis in different way, the most often skipped or selectively treated the problem of quantitative methods application for the purpose of risk analysis. The article presents the issue of one of the most significant stages of risk analysis which is IT risk assessment, especially focusing on chosen quantitative methods such as ALE (Annual Loss Eypected) method, Courtney method, Fisher's method, using survey research ISRAM model (Information Security Risk Analysis Method) and other derived ratios. There were also shortly presented chosen qualitative methods - FMEA (Failure Mode and Effects Analysis) and FMECA (Failure Mode and Effects Criticality Analysis), NIST SP 800-30 method and CRAMM methodology.

引用

页码：1073 / 1078

页数：6

共 50 条

[1] Qualitative and quantitative risk assessment
Coleman, ME
Marks, HM
FOOD CONTROL, 1999, 10 (4-5) : 289 - 297
[2] Impact Of Moving From Qualitative To Quantitative Approach On Genotoxicity Risk Assessment
Thybaud, Veronique
MUTAGENESIS, 2014, 29 (06) : 552 - 553
[3] Qualitative versus quantitative risk assessment
Ye, F.
RISK, RELIABILITY AND SAFETY: INNOVATING THEORY AND PRACTICE, 2017, : 874 - 880
[4] Qualitative and quantitative procedures for health risk assessment
Lohman, PHM
MUTATION RESEARCH-FUNDAMENTAL AND MOLECULAR MECHANISMS OF MUTAGENESIS, 1999, 428 (1-2) : 237 - 254
[5] A qualitative and quantitative risk assessment of snuff dipping
Nilsson, R
REGULATORY TOXICOLOGY AND PHARMACOLOGY, 1998, 28 (01) : 1 - 16
[6] Risk aversion: A qualitative approach and quantitative estimates
Novoselov, A.A.
Avtomatika i Telemekhanika, 2003, (07): : 165 - 177
[7] Risk aversion: A qualitative approach and quantitative estimates
Novoselov, AA
AUTOMATION AND REMOTE CONTROL, 2003, 64 (07) : 1165 - 1176
[8] Risk Aversion: A Qualitative Approach and Quantitative Estimates
A. A. Novoselov
Automation and Remote Control, 2003, 64 : 1165 - 1176
[9] Risk Ietfictodniiain and Assessment in the Digital Transformation of Aerospace Enterprises: A Combined Qualitative and Quantitative Approach
Zhang, Hongyi
Xu, Yu-shan
Li, Yu-kang
INTERNATIONAL JOURNAL OF AVIATION AERONAUTICS AND AEROSPACE, 2024, 11 (04):
[10] Development of qualitative and quantitative AOPs and their integration into risk assessment
Bois, F. Y.
Gao, W.
Yang, H.
Carta, G.
van der Stel, W.
Delp, J.
Gayraud, G.
Beltman, J. B.
Jennings, P.
Leist, M.
van de Water, B.
TOXICOLOGY LETTERS, 2019, 314 : S22 - S22

← 1 2 3 4 5 →