Abstract

It is an important function for managers to keep away from information security risks. With the increasing complex and scale of information systems, information system security risks may be more difficult to assess and strategies for risk reduction may be lack of objectivity. To solve this problem, this paper proposes a knowledge-based information security risk assessment method in which basic rules and specific rules are defined to match every asset, threat and vulnerability. Basic rules are defined as the rules without influence of external relationships. Specific rules are defined as the rules by user group. Performance analysis shows this method could increase efficiency and ensure accuracy of risk assessment.

Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
A Comparative Study of Risk Assessment Methodologies for Information Systems
Bulletin of Electrical Engineering and Informatics | VOL. 1
05 Mar 2012
A framework for estimating information security risk assessment method completeness
Gaute Wangen ... Einar Snekkenes
International journal of information security | VOL. 17
Gaute Wangen, et. al.Gaute Wangen ... Einar Snekkenes
28 Jun 2017
Genre-Based Assessment of Information and Knowledge Security Risks
Ali Mohammad Padyab ... Tero Paivarinta
-
Ali Mohammad Padyab, et. al.Ali Mohammad Padyab ... Tero Paivarinta
01 Jan 2014
Development of an E-Healthcare Information Security Risk Assessment Method
June Wei ... Binshan Lin
-
June Wei, et. al.June Wei ... Binshan Lin
01 Jan 2015
View more papers

More From: The Journal of China Universities of Posts and Telecommunications

Paper Title
Journal
Date
Author
TMAHS: a truthful multi-unit double auction framework for heterogeneous spectrum in secondary market
The Journal of China Universities of Posts and Telecommunications | VOL. 26
27 Feb 2019
Novel high PSRR high-order temperature-compensated subthreshold MOS bandgap reference
Zhou Qianneng ... Luo Wei
The Journal of China Universities of Posts and Telecommunications | VOL. 24
Zhou Qianneng, et. al.Zhou Qianneng ... Luo Wei
01 Dec 2017
Access control scheme with attribute revocation for SWIM
Wu Zhijun ... Lei Jin
The Journal of China Universities of Posts and Telecommunications | VOL. 24
Wu Zhijun, et. al.Wu Zhijun ... Lei Jin
01 Dec 2017
Palm vein recognition method based on fusion of local Gabor histograms
Ma Xin ... Jing Xiaojun
The Journal of China Universities of Posts and Telecommunications | VOL. 24
Ma Xin, et. al.Ma Xin ... Jing Xiaojun
01 Dec 2017
View more papers