• DocumentCode
    3478353
  • Title

    A Method of Information Security Risk Assessment Using Fuzzy Number Operations

  • Author

    Fu, Yu ; Qin, Yanlin ; Wu, Xiaoping

  • Author_Institution
    Dept. of Inf. Security, Naval Univ. of Eng., Wuhan
  • fYear
    2008
  • fDate
    12-14 Oct. 2008
  • Firstpage
    1
  • Lastpage
    4
  • Abstract
    After systematic analysis of risk factors of information security and assessment process, a quantitative security assessment method is presented based on fuzzy number operations. Both the fuzziness of the indices and the uncertainty of weight determination are considered. Then the grades of fuzzy language variables are given, and the opinions of multi experts are integrated to triangular fuzzy numbers. Hence, comprehensive fuzzy assessment is made by using the operation rules defined on the triangular fuzzy number. Finally, by using fuzzy number ranking method, the assessment result is defuzzified and the risk grade is determined. An illustrative example is given to show the effectiveness and validity of this method.
  • Keywords
    fuzzy set theory; number theory; risk analysis; security of data; fuzzy language variable; fuzzy number ranking method; fuzzy uncertainty; information security risk assessment; operation rule; systematic risk analysis; triangular fuzzy number operation; Fuzzy systems; Information analysis; Information security; Information systems; Management information systems; National security; Risk analysis; Risk management; System testing; Uncertainty;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Wireless Communications, Networking and Mobile Computing, 2008. WiCOM '08. 4th International Conference on
  • Conference_Location
    Dalian
  • Print_ISBN
    978-1-4244-2107-7
  • Electronic_ISBN
    978-1-4244-2108-4
  • Type

    conf

  • DOI
    10.1109/WiCom.2008.2927
  • Filename
    4681116