Paper Title:
A Hybrid Approach for Information Systems Security Risk Assessment under Uncertain Environment
  Abstract

In electronic business environment, it is critical for an enterprise to assess information systems security (ISS) risks. In this paper, we propose a hybrid approach for ISS risk assessment. Given there is a great deal of uncertainty in the ISS risk assessment, in the hybrid approach, we combine the evidence theory with fuzzy sets to deal with the uncertain evidence found in the ISS risk assessment. The proposed approach provides a new way to define the basic belief assignment in fuzzy measure. Moreover, the approach also provides a method of testing the evidential consistency, which can reduce the uncertainty derived from the conflicts of evidence. Finally, the approach is further demonstrated and validated via a case study, in which the effectiveness of the proposed approach is evaluated by comparing it with other methods.

  Info
Periodical
Key Engineering Materials (Volumes 467-469)
Edited by
Dehuai Zeng
Pages
481-486
DOI
10.4028/www.scientific.net/KEM.467-469.481
Citation
N. Feng, J. Xie, Y. X. Wu, "A Hybrid Approach for Information Systems Security Risk Assessment under Uncertain Environment", Key Engineering Materials, Vols. 467-469, pp. 481-486, 2011
Online since
February 2011
Export
Price
$32.00
Share

In order to see related information, you need to Login.

In order to see related information, you need to Login.

Authors: Yen Jo Kiang
Chapter 3: System Analysis and Industrial Engineering
Abstract:Refer to each stage of the investment in intelligent control firms, the risk is a dynamic system with complexity for the uncertain factors...
423
Authors: Zhuan Zhe Zhao, Min Ping Jia, Kang He, Hao Zhou, Yu Jie Ding
Chapter 4: General Mechanical Engineering. Manufacturing and Technology
Abstract:Since the information fusion based on Dempster-Shafer(D-S) evidence theory involves counter-intuitive behaviors when evidences highly...
377
Authors: Ran Tian, Bin Yong Li
Chapter 4: Electronics, Computer Engineering and Information Technology
Abstract:Evidence theory is an effective tool in dealing with uncertainty questions. The evidence comes mainly from experts,but the expert knowledge...
278