A new risk assessment quantitative method based on fuzzy AHP

Author

Lijian, Wang ; Bin, Wang ; Yongjun, Peng

Author_Institution

Sch. of Comput., Wuhan Univ., Wuhan, China

fYear

2010

fDate

17-19 Sept. 2010

Firstpage

822

Lastpage

826

Abstract

With the development of the country and the acceleration of information technology, the information security issues is highly growing. In order to efficiently evaluate the information security risk, the information system security risk assessment model based on Fuzzy AHP method is proposed. In this paper, firstly, we use multi-layer structure and elation matrix is introduced to describe the interrelationship among judgment factors. Secondly, on the basis of calculating the influence of factors on security, a new risk assessment quantitative method is established. Finally, certain method is raised to analyze the results from fuzzy judgment. The method changes the ways of generally regarding information security as black box to evaluation security, and plays a role in verifying and modifying the results made by traditional model.

Keywords

decision making; fuzzy set theory; information systems; information technology; matrix algebra; risk management; security of data; elation matrix; fuzzy AHP; information security risk; information technology; multilayer structure; risk assessment quantitative method; Certification; Indexes; Information security; Risk management; Software; AHP; Fuzzy Comprehensive Evaluation; information security; risk assessment;

fLanguage

English

Publisher

ieee

Conference_Titel

Information and Financial Engineering (ICIFE), 2010 2nd IEEE International Conference on

Conference_Location

Chongqing

Print_ISBN

978-1-4244-6927-7

Type

conf

DOI

10.1109/ICIFE.2010.5609482

Filename

5609482