Comprehensive Evaluation Based on Gray Relation Analysis for Information Security Management Measurement
The purpose of this paper is to study the comprehensive evaluation method for Information Security Management Measurement (ISMM). An organizations information security management performance would be assessed from three dimensions: implementation, effectiveness and input. Each dimensional evaluation value and final result can be calculated by gray relation analysis. A cube model for ISMM is then presented and it is capable of providing valuable results for managers since it is based on managing, technical and economic considerations. Under the circumstance that ISMM is mainly concerned about indicators of microcosmic level and frameworks of macro level, the advance of comprehensive evaluation based on gray relation analysis benefits building a more integrated ISMM system.
Information security management measurement gray relation analysis comprehensive evaluation
Xi-quan Guo Wei-qi Luo Guo-xiang Yao
School of Mangagement Jinan University Guangzhou, PRC School of Information Engineering Guangzhou Pa School of Mangagement Jinan University Guangzhou, PRC School of Information Jinan University Guangzhou, PRC
国际会议
西安
英文
143-146
2010-08-07(万方平台首次上网日期,不代表论文的发表时间)