Title :
Comprehensive Evaluation Based on Gray Relation Analysis for Information Security Management Measurement
Author :
Guo, Xi-quan ; Luo, Wei-qi ; Yao, Guo-xiang
Author_Institution :
Sch. of Mangagement, Jinan Univ., Guangzhou, China
Abstract :
The purpose of this paper is to study the comprehensive evaluation method for Information Security Management Measurement (ISMM). An organization´s information security management performance would be assessed from three dimensions: implementation, effectiveness and input. Each dimensional evaluation value and final result can be calculated by gray relation analysis. A cube model for ISMM is then presented and it is capable of providing valuable results for managers since it is based on managing, technical and economic considerations. Under the circumstance that ISMM is mainly concerned about indicators of microcosmic level and frameworks of macro level, the advance of comprehensive evaluation based on gray relation analysis benefits building a more integrated ISMM system.
Keywords :
information management; security of data; ISMM system; comprehensive evaluation method; gray relation analysis; information security management measurement; Arrays; Biological system modeling; ISO standards; Information security; Organizations; Standards organizations; Information security management measurement; comprehensive evaluation; gray relation analysis;
Conference_Titel :
Information Science and Management Engineering (ISME), 2010 International Conference of
Conference_Location :
Xi´an
Print_ISBN :
978-1-4244-7669-5
Electronic_ISBN :
978-1-4244-7670-1
DOI :
10.1109/ISME.2010.8
