Fuzzy Multi-attribute Security Risk Assessment Model
Successful practice indicates that security requirements and investments should refer to the result of risk assessment; however, simplistic risk assessment that results in lists of risks do not give sufficient information to rank risks when resources such as time and money are limited. This paper presents a fuzzy multi-attribute evaluation model. In this model, additive value function is used with an integrated weights assessing method in fuzzy environment; moreover, this model shows a new fuzzy distance measure to rank risks. With this model, fuzzy multi-attribute analysis provides a convenient framework to systematically develop risk assessments that the security manager can use to prioritize security requirements and make economical and reasonable security investments.
Security Risk Assessment Fuzzy Multi-attribute Analysis Weighting Factor Sensitivity Analysis
GU Yonghao LIU Yong
School of Telecommunication & Network Technology Beijing University of Posts and Telecommunications, Beijing 100876, China
国际会议
The 1st International Conference on Risk Analysis and Crisis Response(首届风险分析与危机反应国际学术研讨会)
上海
英文
369-374
2007-09-25(万方平台首次上网日期,不代表论文的发表时间)