Information security risk assessment model for risk management

被引:0
|
作者
Wawrzyniak, Dariusz [1 ]
机构
[1] Univ Econ, PL-53345 Wroclaw, Poland
来源
TRUST, PRIVACY, AND SECURITY IN DIGITAL BUSINESS, PROCEEDINGS | 2006年 / 4083卷
关键词
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The article presents a simple model for the information security risk assessment. There are four main elements of the model: security threats, their business impact, security measures and their costs. The security measures - threats relationship matrix is the fundamental quantitative tool for the model. The model bases on well known methods like ALE, ROSI and ISRAM but allows for establishing more flexible and more precise metrics supporting the security management process at different organizational levels(1).
引用
收藏
页码:21 / 30
页数:10
相关论文
共 50 条
  • [1] A Data-driven Assessment Model for Information Systems Security Risk Management
    Feng, Nan
    Yu, Xue
    [J]. JOURNAL OF COMPUTERS, 2012, 7 (12) : 3103 - 3109
  • [2] General risk assessment model for information system security
    Chi, Yue
    Zhang, Yong-Zheng
    Yun, Xiao-Chun
    [J]. Harbin Gongye Daxue Xuebao/Journal of Harbin Institute of Technology, 2005, 37 (SUPPL. 1): : 192 - 194
  • [3] Assessment Model and Method Research of Information Security Risk
    Lu Zhen
    Xiong Zhen
    Tu Keqin
    [J]. FRONTIERS OF MANUFACTURING AND DESIGN SCIENCE IV, PTS 1-5, 2014, 496-500 : 2170 - +
  • [4] A Novel Security Risk Assessment Model for Information System
    Lv, Huiying
    [J]. 2ND IEEE INTERNATIONAL CONFERENCE ON ADVANCED COMPUTER CONTROL (ICACC 2010), VOL. 4, 2010, : 282 - 287
  • [5] A situation awareness model for information security risk management
    Webb, Jeb
    Ahmad, Atif
    Maynard, Sean B.
    Shanks, Graeme
    [J]. COMPUTERS & SECURITY, 2014, 44 : 1 - 15
  • [6] Fuzzy OWA Model for Information Security Risk Management
    Imamverdiev, Ya. N.
    Derakshande, S. A.
    [J]. AUTOMATIC CONTROL AND COMPUTER SCIENCES, 2011, 45 (01) : 20 - 28
  • [7] Assets Dependencies Model in Information Security Risk Management
    Breier, Jakub
    Schindler, Frank
    [J]. INFORMATION AND COMMUNICATION TECHNOLOGY, 2014, 8407 : 405 - 412
  • [8] Information Security Risk Management Model for Big Data
    Yang, Min
    [J]. ADVANCES IN MULTIMEDIA, 2022, 2022
  • [9] Information Security Risk Assessment for the Malaysian Aeronautical Information Management System
    Alwi, Alfian
    Ariffin, Khairul Akram Zainol
    [J]. PROCEEDINGS OF THE 2018 CYBER RESILIENCE CONFERENCE (CRC), 2018,
  • [10] A Quantitative Model for Information-Security Risk Management
    Bojanc, Rok
    Jerman-Blazic, Borka
    [J]. ENGINEERING MANAGEMENT JOURNAL, 2013, 25 (02) : 25 - 37
12345