The Information Security Risk Assessment based on AHP and Fuzzy Comprehensive Evaluation
Information security risk assessment is the most fundamental basis of the risk management about information security. Moreover, the objectivity and accuracy of information security risk assessment play an important role to safeguard the information system security. Through the study on the information security risk of the network system in a university, we firstly build an index system of information security risk assessment and analyze the functions of its essential elements in detail. Then, based on AHP and fuzzy comprehensive evaluation, an information security risk assessment method is proposed to effectively resolve the quantitative assessment problems of qualitative indicators in the risk assessment. An actual instance shows that the method is of strong rationality and effectiveness, and it can be better applied to information security risk assessment.
Analytic Hierarchy Process (AHP) fuzzy comprehensive evaluation information security risk assessment uzzy relation matrix
Sha Fu Hangjun Zhou
Department of Information Management Hunan University of Finance and Economics Changsha, P.R.China Department of Information Management Hunan University of Finance and Economics Changsha, P.R.China
国际会议
2011 International Conference on Information and Computer Networks(ICICN 2011)(2011年信息与计算机网络国际会议)
贵阳
英文
124-128
2011-01-26(万方平台首次上网日期,不代表论文的发表时间)