Abstract

The current information security risk evaluation methods are only concerned with the risk of system components, rarely based on risk perspective. Thus, it is difficult to meet different levels of information security risk comprehension such as the operational staff and the organization's manager. This paper proposes a hierarchical risk evaluation method based on asset dependence chain to quantify the hierarchical risk, the information systems security risks are divided into three levels: the component level, system level and organizational level. By analyzing the assets dependence in three levels, a business systems-information systems-system components assets dependence chain is formed. In the end, a hierarchical risk calculation method is presented. The risk analysis result can reflect the level of security risk evaluation needs more comprehensively and objectively.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Modeling the Process of Evaluation of Information Security Risks and its Methodology by the Application of Computer Systems
Elchin N Taghi̇yev
Akademik Tarih ve Dusunce Dergisi | VOL. -
Elchin N Taghi̇yevElchin N Taghi̇yev
25 Feb 2024
Implementation of the process approach to managing risks of information security in the NIST documents
Yuliia Kozhedub
Collection "Information technology and security" | VOL. 5
Yuliia KozhedubYuliia Kozhedub
31 Dec 2018
Research on the fuzzy comprehensive evaluation for information system security risk
Tao Zou ... Jinsen Han
-
Tao Zou, et. al.Tao Zou ... Jinsen Han
01 Sep 2011
A Model of Information Security Awareness for Assessing Information Security Risk for Emerging Technologies
Roberto J Mejias ... Pierre A Balthazard
Journal of Information Privacy and Security | VOL. 10
Roberto J Mejias, et. al.Roberto J Mejias ... Pierre A Balthazard
02 Oct 2014
View more papers

More From: International Journal of Security and Its Applications

Paper Title
Journal
Date
Author
Capturing Security Mechanisms Applied to Ecommerce: An Analysis of Transaction Security
Ranie B Canlas
International Journal of Security and Its Applications | VOL. 15
Ranie B CanlasRanie B Canlas
31 Mar 2021
-
-
International Journal of Security and Its Applications | VOL. 15
--
31 Mar 2021
Blockchain Approach to Cyber Security Vulnerabilities Attacks and Potential Countermeasures
Bosubabu Samban ... Yegireddi Ramesh
International Journal of Security and Its Applications | VOL. 14
Bosubabu Samban, et. al.Bosubabu Samban ... Yegireddi Ramesh
31 Mar 2020
Mitigation of Wireless Body Area Networks Challenges using Cooperation
Zeeshan Haider ... Muhammad Asam
International Journal of Security and Its Applications | VOL. 14
Zeeshan Haider, et. al.Zeeshan Haider ... Muhammad Asam
31 Mar 2020
View more papers