Title :
Risk Evaluation Process Model of Information Security
Author_Institution :
Fire Command Dept., Chinese People´s Armed Police Force Acad., Langfang, China
Abstract :
The risk assessment applied in information technology is the information security risk evaluation. A modeling method of security system that is suitable to description results and restriction of information and to modeling form and control of distributed system is put forward based on the analysis of the concept of security system risk evaluation in the field of information security. A model of information security evaluation process has been built based on Petri net. The process is divided into several objects, such as assets identification, threats identification, vulnerability identification and existing security control measures identification etc. and make a detailed description to each object on Petri net theory.
Keywords :
Petri nets; risk analysis; security of data; Petri net; distributed system; information security evaluation process; information technology; risk evaluation process model; Availability; Control system synthesis; Distributed control; Force measurement; Information analysis; Information security; Information systems; Privacy; Risk analysis; Risk management; Risk evaluation rocess model; information security; petri net;
Conference_Titel :
Measuring Technology and Mechatronics Automation, 2009. ICMTMA '09. International Conference on
Conference_Location :
Zhangjiajie, Hunan
Print_ISBN :
978-0-7695-3583-8
DOI :
10.1109/ICMTMA.2009.143
