Information Security Governance Analysis Using Probabilistic Relational Models
This paper proposes the use of Probabilistic Relational Models (PRM) for analyzing dependencies between Information Security Governance (ISG) components and its impact on process capability of mitigating information security vulnerabilities. Using the PRM enables inference between different ISG components expressed in probabilities, and also inference on the process capability. A concrete PRM which exemplifies how to assess the capability of the access control process is further presented, and thus showing how the PRM can be adapted to fit the analysis of a specific process in an organizational environment.
Waldo Rocha Flores Mathias Ekstedt
Royal Institute of Technology, 100 44, Stockholm, Sweden
国际会议
13th International Conference on Enterprise Information System(第13届企业信息系统国际会议 ICEIS 2011)
北京
英文
1543-1551
2011-06-08(万方平台首次上网日期,不代表论文的发表时间)