A Data-driven Assessment Model for Information Systems Security Risk Management

被引:4
|
作者
Feng, Nan [1 ]
Yu, Xue [1 ]
机构
[1] Tianjin Univ, Coll Management & Econ, Dept Informat Management & Management Sci, Tianjin, Peoples R China
来源
JOURNAL OF COMPUTERS | 2012年 / 7卷 / 12期
基金
中国国家自然科学基金;
关键词
information systems; risk management; Bayesian networks; genetic algorithm;
D O I
10.4304/jcp.7.12.3103-3109
中图分类号
TP39 [计算机的应用];
学科分类号
081203 ; 0835 ;
摘要
In this paper, a data-driven assessment model for information systems security risk management is proposed based on the knowledge from observed cases and domain experts. In the model, genetic algorithm is applied to search the rules of security risk identification based on historical data. For identifying the causal relationships of risk factors and predict the occurrence probability of security risk, a Bayesian network (BN) is developed. Structure learning and parameter learning are utilized to integrate the database of observed cases with domain expert experience in the development of the BN. The significance of the work is that the model provides more objective and visible support for security risk assessment in the information systems.
引用
收藏
页码:3103 / 3109
页数:7
相关论文
共 50 条
  • [31] A distributed data management middleware for data-driven application systems
    Langella, S
    Hastings, S
    Oster, S
    Kurc, T
    Catalyurek, U
    Saltz, J
    [J]. 2004 IEEE INTERNATIONAL CONFERENCE ON CLUSTER COMPUTING, 2004, : 267 - 276
  • [32] A Data-Driven Model for Linking Open Economic Information
    Vafopoulos, M.
    Koukourikos, A.
    Vafeiadis, G.
    Negkas, D.
    Skaros, I.
    Tzani, A.
    [J]. INTERNET SCIENCE, 2017, 10673 : 329 - 343
  • [33] Towards a Data-Driven Enterprise: Effects on Information, Governance, Infrastructures and Security
    Polzonetti, A.
    Sagratella, M.
    [J]. 2017 IEEE INTERNATIONAL CONFERENCE ON INDUSTRIAL ENGINEERING AND ENGINEERING MANAGEMENT (IEEM), 2017, : 1480 - 1484
  • [34] A multimodal data-driven approach for driving risk assessment
    Bai, Congcong
    Jin, Sheng
    Jing, Jun
    Yang, Chengcheng
    Yao, Wenbin
    Rong, Donglei
    Alagbe, Jeremie Adje
    [J]. TRANSPORTATION RESEARCH PART E-LOGISTICS AND TRANSPORTATION REVIEW, 2024, 189
  • [35] Including technical and security risks in the management of information systems: A programmatic risk management model
    Dillon, Robin L.
    Paté-Cornell, M. Elisabeth
    [J]. Systems Engineering, 2005, 8 (01) : 15 - 28
  • [36] A data-driven approach to quality assessment for hyperspectral systems
    Kerr, Gregoire H. G.
    Fischer, Christian
    Reulke, Ralf
    [J]. COMPUTERS & GEOSCIENCES, 2015, 83 : 100 - 109
  • [37] Data-driven manufacturing: An assessment model for data science maturity
    Gokalp, Mert Onuralp
    Gokalp, Ebru
    Kayabay, Kerem
    Kocyigit, Altan
    Eren, P. Erhan
    [J]. JOURNAL OF MANUFACTURING SYSTEMS, 2021, 60 : 527 - 546
  • [38] A data-driven penalty-reward methodology for performance assessment of risk control systems
    Singh, Kritika
    Maiti, J.
    Roychowdhury, Sayak
    [J]. JOURNAL OF LOSS PREVENTION IN THE PROCESS INDUSTRIES, 2022, 77
  • [39] A data-driven penalty-reward methodology for performance assessment of risk control systems
    Singh, Kritika
    Maiti, J.
    Roychowdhury, Sayak
    [J]. Journal of Loss Prevention in the Process Industries, 2022, 77
  • [40] Advances in Data-Driven Risk-Based Performance Assessment of Structures and Infrastructure Systems
    Feng, De-Cheng
    Li, Yue
    Shafieezadeh, Abdollah
    Taciroglu, Ertugrul
    [J]. JOURNAL OF STRUCTURAL ENGINEERING, 2023, 149 (05)
12345