Information Security Risk Assessment: A Method Comparison

被引:25
|
作者
Wangen, Gaute [1 ]
机构
[1] Norwegian Univ Sci & Technol, Trondheim, Norway
来源
COMPUTER | 2017年 / 50卷 / 04期
关键词
case studies; Information security; information security risk assessment; information security risk management; ISRA; ISRM; risk assessment; security; security frameworks; security practices;
D O I
10.1109/MC.2017.107
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
Numerous methods for information security risk assessment (ISRA) are available, yet there is little guidance on how to choose one. Through a comprehensive risk identification, estimation, and evaluation framework, the author evaluates the practical application of three ISRA methods in terms of tasks required, user experience, and results.
引用
收藏
页码:52 / 61
页数:10
相关论文
共 50 条
  • [1] Assessment Model and Method Research of Information Security Risk
    Lu Zhen
    Xiong Zhen
    Tu Keqin
    [J]. FRONTIERS OF MANUFACTURING AND DESIGN SCIENCE IV, PTS 1-5, 2014, 496-500 : 2170 - +
  • [2] An Improved Risk Assessment Method for SCADA Information Security
    Markovic-Petrovic, J. D.
    Stojanovic, M. D.
    [J]. ELEKTRONIKA IR ELEKTROTECHNIKA, 2014, 20 (07) : 69 - 72
  • [3] Information security risk assessment using the AHP method
    Zaburko, J.
    Szulzyk-Cieplak, J.
    [J]. IV INTERNATIONAL CONFERENCE OF COMPUTATIONAL METHODS IN ENGINEERING SCIENCE (CMES'19), 2019, 710
  • [4] Risk Assessment Method of Information Security Based on AHP
    Ning, Xu
    [J]. PROCEEDINGS OF 2010 INTERNATIONAL CONFERENCE ON INFORMATION TECHNOLOGY AND INDUSTRIAL ENGINEERING, VOLS I AND II, 2010, : 430 - 433
  • [5] Information asset valuation method for information technology security risk assessment
    Foroughi, Farhad
    [J]. WORLD CONGRESS ON ENGINEERING 2008, VOLS I-II, 2008, : 576 - 581
  • [6] Comparison of ISO GMITS and Probabilistic Risk Assessment in Information Security
    Satoh, Naoki
    Kumamoto, Hiromitsu
    [J]. PROCEEDINGS OF THE 5TH INTERNATIONAL CONFERENCE ON INNOVATION & MANAGEMENT, VOLS I AND II, 2008, : 2317 - 2321
  • [7] The Research of Information Security Risk Assessment Method Based on AHP
    Xu, Ning
    Zhao, DongMei
    [J]. SPORTS MATERIALS, MODELLING AND SIMULATION, 2011, 187 : 575 - 580
  • [8] Information Security Risk Assessment and Management Method in Computer Networks
    Anikin, Igor V.
    [J]. 2015 INTERNATIONAL SIBERIAN CONFERENCE ON CONTROL AND COMMUNICATIONS (SIBCON), 2015,
  • [9] A Fuzzy Logic based Information Security Risk Assessment Method
    Yang, Yaling
    Zhou, Yanhui
    [J]. MECHANICAL AND ELECTRONICS ENGINEERING III, PTS 1-5, 2012, 130-134 : 3726 - 3730
  • [10] An information security risk assessment method for cloud systems based on risk contagion
    Li, Ziqian
    Tang, Zhenying
    Lv, Jingxian
    Li, Huiqin
    Han, Wei
    Zhang, Zhimin
    [J]. PROCEEDINGS OF 2020 IEEE 5TH INFORMATION TECHNOLOGY AND MECHATRONICS ENGINEERING CONFERENCE (ITOEC 2020), 2020, : 83 - 87
12345