Design of a computer-aided system for risk assessment on information systems

被引:0
|
作者
Liao, GY [1 ]
Song, CH [1 ]
机构
[1] Chang Gung Univ, Dept Informat Management, Taoyuan 333, Taiwan
来源
37TH ANNUAL 2003 INTERNATIONAL CARNAHAN CONFERENCE ON SECURITY TECHNOLOGY, PROCEEDINGS | 2003年
关键词
risk assessment; information security; decision support; qualitative analysis; quantitative analysis;
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
The Internet creates an efficient environment for businesses to conduct transactions, while also creating a channel for outsiders to access organizational assets. To determine the reasonable amount of security investment, security officers would conduct risk assessment to evaluate the risk values in existing systems. In traditional risk assessment processes, however, heavy dependence on human experts leads to difficulties in automating risk assessment. This paper proposes a transaction based computer aided system to facilitate risk assessment on information systems. The proposed system evaluates assets with business transactions, which facilitates the procedures of asset evaluation. The likelihood model used by the system can assist the risk analysts in conducting what-if analyses to determine risk values. Therefore, the proposed system would contribute in enhancing the level of automation regarding risk assessment.
引用
收藏
页码:157 / 162
页数:6
相关论文
共 50 条
  • [1] Information System for Computer-Aided Fixture Design
    Ivanov, Vitalii
    Pavlenko, Ivan
    Vashchenko, Svitlana
    Zajac, Jozef
    [J]. INDUSTRY 4.0: TRENDS IN MANAGEMENT OF INTELLIGENT MANUFACTURING SYSTEMS, 2019, : 121 - 132
  • [2] A COMPUTER-AIDED RELIABILITY AND RISK ASSESSMENT SYSTEM
    LEICHT, R
    VANHECKE, R
    WINGENDER, HJ
    [J]. NUCLEAR ENGINEERING AND DESIGN, 1991, 130 (01) : 27 - 32
  • [3] MILITARY INFORMATION SYSTEMS - DESIGN OF COMPUTER-AIDED SYSTEMS FOR COMMAND
    不详
    [J]. INTERNATIONAL JOURNAL OF COMPUTER MATHEMATICS, 1965, 1 (03) : 236 - &
  • [4] COMPUTER-AIDED ANALYSIS AND DESIGN OF INFORMATION-SYSTEMS
    NUNAMAKER, JF
    KONSYNSKI, BR
    HO, T
    SINGER, C
    [J]. COMMUNICATIONS OF THE ACM, 1976, 19 (12) : 674 - 687
  • [5] COMPUTER-AIDED DESIGN SYSTEMS
    GALLINA, G
    [J]. CASABELLA, 1988, 52 (548): : R2 - R8
  • [6] Computer-aided chemical risk assessment
    Nieminen, M
    [J]. FROM PROTECTION TO PROMOTION, PROCEEDINGS OF THE INTERNATIONAL SYMPOSIUM: OCCUPATIONAL HEALTH AND SAFETY IN SMALL-SCALE ENTERPRISES, 1998, 25 : 134 - 136
  • [7] Computer-aided interventions information system
    Coussaert, O
    Schoovaerts, F
    Joly, A
    Levivier, A
    Wikler, D
    [J]. ITAB 2003: 4TH INTERNATIONAL IEEE EMBS SPECIAL TOPIC CONFERENCE ON INFORMATION TECHNOLOGY APPLICATIONS IN BIOMEDICINE, CONFERENCE PROCEEDINGS: NEW SOLUTIONS FOR NEW CHALLENGES, 2003, : 382 - 383
  • [8] COMPUTER-AIDED RELIABILITY AND RISK ASSESSMENT
    LEICHT, R
    WINGENDER, HJ
    [J]. RELIABILITY DATA COLLECTION AND USE IN RISK AND AVAILABILITY ASSESSMENT /, 1989, : 227 - 237
  • [9] COMPUTER-AIDED ARCHITECTURAL DESIGN SYSTEMS
    UNO, S
    [J]. JAPAN ANNUAL REVIEWS IN ELECTRONICS COMPUTERS & TELECOMMUNICATIONS, 1983, 7 : 225 - 239
  • [10] COMPUTER-AIDED DESIGN OF HYDRAULIC SYSTEMS
    CLARK, RL
    [J]. TRANSACTIONS OF THE ASAE, 1973, 16 (02): : 193 - 194
12345