IT Risk Assessment: Quantitative and Qualitative Approach

被引:0
|
作者
Rot, Artur [1 ]
机构
[1] Wroclaw Univ Econ, Business Informat Inst, Dept Management Informat Syst Engn, Wroclaw, Poland
来源
WCECS 2008: WORLD CONGRESS ON ENGINEERING AND COMPUTER SCIENCE | 2008年
关键词
IT risk; IT security risk analysis methods; qualitative risk assessment methods; quantitative risk assessment methods;
D O I
暂无
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
IT risk management currently plays more and more important role in almost all aspects of contemporary organizations' functionality. It requires reliable and cyclical realization of its key task which is risk analysis. Literature of subject presents problems of risk analysis in different way, the most often skipped or selectively treated the problem of quantitative methods application for the purpose of risk analysis. The article presents the issue of one of the most significant stages of risk analysis which is IT risk assessment, especially focusing on chosen quantitative methods such as ALE (Annual Loss Eypected) method, Courtney method, Fisher's method, using survey research ISRAM model (Information Security Risk Analysis Method) and other derived ratios. There were also shortly presented chosen qualitative methods - FMEA (Failure Mode and Effects Analysis) and FMECA (Failure Mode and Effects Criticality Analysis), NIST SP 800-30 method and CRAMM methodology.
引用
收藏
页码:1073 / 1078
页数:6
相关论文
共 50 条
  • [41] A new quantitative approach for information security risk assessment
    Asosheh, Abbas
    Dehmoubed, Bijan
    Khani, Amir
    [J]. 2009 2ND IEEE INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND INFORMATION TECHNOLOGY, VOL 2, 2009, : 222 - +
  • [42] On a Stepwise Quantitative Approach for Benefit-Risk Assessment
    He, Weili
    Sun, Yaxuan
    Li, Qing
    Wan, Sabrina
    [J]. THERAPEUTIC INNOVATION & REGULATORY SCIENCE, 2017, 51 (05) : 625 - 634
  • [43] Qualitative and quantitative reliability assessment
    Kanoun, K
    Kaaniche, M
    Laprie, JC
    [J]. IEEE SOFTWARE, 1997, 14 (02) : 77 - 87
  • [44] Qualitative versus quantitative assessment
    Gundert-Remy, Ursula
    [J]. TOXICOLOGY LETTERS, 2009, 189 : S6 - S6
  • [45] AN ASSESSMENT OF QUANTITATIVE AND QUALITATIVE FERROGRAPHY
    WAKEFIELD, GR
    LEVINSOHN, H
    [J]. WEAR, 1988, 126 (01) : 31 - 55
  • [46] WEEDING - A QUANTITATIVE AND QUALITATIVE APPROACH
    REED, LL
    ERICKSON, R
    [J]. LIBRARY ACQUISITIONS-PRACTICE AND THEORY, 1993, 17 (02): : 175 - 181
  • [47] Risk Assessment in Collaborative Tasks: A Comparative Analysis - Qualitative Method and Quantitative Method
    Zinveli, Ankidim
    Dragomir, Mihai
    [J]. ADVANCES IN MANUFACTURING IV, VOL 3, MANUFACTURING 2024, 2024, : 68 - 79
  • [48] Quantitative risk assessment of noroviruses in drinking water based on qualitative data in Japan
    Masago, Yoshifumi
    Katayama, Hiroyuki
    Watanabe, Toru
    Haramoto, Eiji
    Hashimoto, Atsushi
    Omura, Tatsuo
    Hirata, Tsuyoshi
    Ohgaki, Shinichiro
    [J]. ENVIRONMENTAL SCIENCE & TECHNOLOGY, 2006, 40 (23) : 7428 - 7433
  • [49] Qualitative and quantitative assessment of the risk from the exposure to fetotoxic chemical compounds Discussion
    Piegorsch, Walter W.
    [J]. ENVIRONMENTAL AND ECOLOGICAL STATISTICS, 1995, 2 (01) : 78 - 79
  • [50] Combination of qualitative and quantitative sources of knowledge for risk assessment in the framework of possibility theory
    Oussalah, M
    Newby, M
    [J]. INTERNATIONAL JOURNAL OF GENERAL SYSTEMS, 2004, 33 (2-3) : 133 - 151
12345