A new quantitative approach for information security risk assessment

被引:4
|
作者
Asosheh, Abbas [1 ]
Dehmoubed, Bijan [2 ]
Khani, Amir [2 ]
机构
[1] Tarbiat Modares Univ, Dept Ind Engn, Tehran, Iran
[2] Univ Tehran, Fac Management, Dept Informat Technol Management, Tehran 14174, Iran
来源
2009 2ND IEEE INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND INFORMATION TECHNOLOGY, VOL 2 | 2009年
关键词
information security; information asset; risk assessment; return on investment;
D O I
10.1109/ICCSIT.2009.5234391
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
This article represent a new quantitative approach for assessing the overall information security risks in the real business environment. The new approach is based on Microsoft and Callio Secura approach which are common and practical approaches in the world. The advantage of this approach is that the organization can determine its business risk and the return on security investment.
引用
收藏
页码:222 / +
页数:2
相关论文
共 50 条
  • [1] A new quantitative approach for information security risk assessment
    Asosheh, Abbas
    Dehmoubed, Bijan
    Khani, Amir
    [J]. ISI: 2009 IEEE INTERNATIONAL CONFERENCE ON INTELLIGENCE AND SECURITY INFORMATICS, 2009, : 229 - 229
  • [2] A risk recommendation approach for information security risk assessment
    Chu, Ya-Chi
    Wei, Yu-Chih
    Chang, Wen-Hsuan
    [J]. 2013 15TH ASIA-PACIFIC NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM (APNOMS), 2013,
  • [3] Methodology of quantitative risk assessment for information system security
    Lin, MQ
    Wang, QM
    Li, JH
    [J]. COMPUTATIONAL INTELLIGENCE AND SECURITY, PT 2, PROCEEDINGS, 2005, 3802 : 526 - 531
  • [4] An approach to support information security risk assessment
    Genchev, Petko
    [J]. PROCEEDINGS OF THE 2020 INTERNATIONAL CONFERENCE ON BIOMEDICAL INNOVATIONS AND APPLICATIONS (BIA 2020), 2020, : 125 - 128
  • [5] Cyber Security Risk Modelling and Assessment: A Quantitative Approach
    Sokri, Abderrahmane
    [J]. PROCEEDINGS OF THE 18TH EUROPEAN CONFERENCE ON CYBER WARFARE AND SECURITY (ECCWS 2019), 2019, : 466 - 474
  • [6] New approach to risk controlling in information security
    Zolotareva, G.
    Zolotarev, V.
    Filko, S.
    [J]. XII INTERNATIONAL SCIENTIFIC AND TECHNICAL CONFERENCE APPLIED MECHANICS AND SYSTEMS DYNAMICS, 2019, 1210
  • [7] Information security risk assessment: The qualitative versus quantitative dilemma
    Munteanu, Adrian
    [J]. Managing Information in the Digital Economy: Issues & Solutions, 2006, : 227 - 232
  • [8] How Much Matter Probabilities in Information Security Quantitative Risk Assessment?
    Devos, Jan
    Munteanu, Adrian
    Fotache, Doina
    [J]. CREATING GLOBAL COMPETITIVE ECONOMIES: 2020 VISION PLANNING & IMPLEMENTATION, VOLS 1-3, 2013, : 45 - 57
  • [9] Research on the Quantitative Methods of Classified Information System Security Risk Assessment
    Zhang, Kang
    Shao, Liping
    [J]. LISS 2014, 2015, : 571 - 575
  • [10] Risk Assessment Approach of In-Vehicle Network Information Security
    Wanh, Jian
    Zhang, Shaowei
    Chen, Hengwei
    Wang, Pengcheng
    [J]. CICTP 2022: INTELLIGENT, GREEN, AND CONNECTED TRANSPORTATION, 2022, : 1957 - 1968
12345