A Quantitative Method for Multicriteria Analysis of the Assets of a Critical System in the Management Process of Information Security

被引:0
|
作者
Firoiu, Marian [1 ]
Bacivarov, Ioan C. [1 ]
机构
[1] Univ Politehn Bucuresti, Bucharest, Romania
来源
QUALITY-ACCESS TO SUCCESS | 2019年 / 20卷 / 173期
关键词
information security; critical system; multicriteria analysis; critical asset; TOPSIS method; normalization; weight;
D O I
暂无
中图分类号
C93 [管理学];
学科分类号
12 ; 1201 ; 1202 ; 120202 ;
摘要
The selection of an optimal solution for the identification of the critical assets is a rather complex process, as all the valuable assets of an organization have to be identified, classified and quantified under a common approach, within the risk management process. The paper proposes a quantitative method for the identification of critical assets/services within information security assessment and analysis process which is based on multi-criteria analysis. The aim of this paper is to present a more objective method for the assessment, ranking and quantification of critical assets/services through the analysis of predefined criteria using TOPSIS method. The authors consider that by using this method we can take better decisions in ranking critical assets/services.
引用
收藏
页码:138 / 144
页数:7
相关论文
共 50 条
  • [1] Information management: Protecting critical information assets
    Orlowski, Steve
    Computer Law and Security Report, 2001, 17 (03): : 182 - 185
  • [2] A study on information security management system evaluation - assets, threat and vulnerability
    Farn, KJ
    Lin, SK
    Fung, ARW
    COMPUTER STANDARDS & INTERFACES, 2004, 26 (06) : 501 - 513
  • [3] Assets Dependencies Model in Information Security Risk Management
    Breier, Jakub
    Schindler, Frank
    INFORMATION AND COMMUNICATION TECHNOLOGY, 2014, 8407 : 405 - 412
  • [4] Analysis of Computer Information Management System Security
    Shi, Xiaoling
    Shi, Xiaoping
    Zhang, Zhitian
    PROCEEDINGS OF THE 3RD INTERNATIONAL CONFERENCE ON MATERIAL, MECHANICAL AND MANUFACTURING ENGINEERING, 2015, 27 : 1575 - 1578
  • [5] A Proposed Framework for Ranking Critical Information Assets in Information Security Risk Assessment Using the OCTAVE Allegro Method with Decision Support System Methods
    Prajanti, Anisa Dewi
    Ramli, Kalamullah
    2019 34TH INTERNATIONAL TECHNICAL CONFERENCE ON CIRCUITS/SYSTEMS, COMPUTERS AND COMMUNICATIONS (ITC-CSCC 2019), 2019, : 567 - 570
  • [6] Method for assessing efficiency of the information security management system
    Kiedrowicz, Maciej
    Stanik, Jerzy
    22ND INTERNATIONAL CONFERENCE ON CIRCUITS, SYSTEMS, COMMUNICATIONS AND COMPUTERS (CSCC 2018), 2018, 210
  • [7] Selection of a Business Process Management System: An Analysis based on a Multicriteria Problem
    Silva, Lucio Camara
    Poleto, Thiago
    Heuer de Carvalho, Victor Diogho
    Cabral Seixa Costa, Ana Paula
    2014 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN AND CYBERNETICS (SMC), 2014, : 295 - 299
  • [8] Proposal for an Information Security Management System for the Enrollment Process of a University
    Luque, Silvia
    Linares, Jeseth
    Ticona, Wilfredo
    SOFTWARE ENGINEERING METHODS DESIGN AND APPLICATION, VOL 1, CSOC 2024, 2024, 1118 : 233 - 253
  • [9] An Information Security Management for Socio-Technical Analysis of System Security
    Huynen, Jean-Louis
    Lenzini, Gabriele
    INFORMATION SYSTEMS SECURITY AND PRIVACY, 2018, 867 : 222 - 251
  • [10] Overview of System Wide Information Management and Security Analysis
    Qi Ming
    Lu Songtao
    2017 IEEE 13TH INTERNATIONAL SYMPOSIUM ON AUTONOMOUS DECENTRALIZED SYSTEMS (ISADS 2017), 2017, : 191 - 194
12345