A fuzzy approach to risk analysis in information systems
| Data(s) |
2013
|
|---|---|
| Resumo |
Assets are interrelated in risk analysis methodologies for information systems promoted by international standards. This means that an attack on one asset can be propagated through the network and threaten an organization's most valuable assets. It is necessary to valuate all assets, the direct and indirect asset dependencies, as well as the probability of threats and the resulting asset degradation. These methodologies do not, however, consider uncertain valuations and use precise values on different scales, usually percentages. Linguistic terms are used by the experts to represent assets values, dependencies and frequency and asset degradation associated with possible threats. Computations are based on the trapezoidal fuzzy numbers associated with these linguistic terms. |
| Formato |
application/pdf |
| Identificador | |
| Idioma(s) |
eng |
| Publicador |
Facultad de Informática (UPM) |
| Relação |
http://oa.upm.es/26123/1/26123cestero_INVE_MEM_2013.pdf.pdf http://www.icores.org/?y=2013 info:eu-repo/semantics/altIdentifier/doi/null |
| Direitos |
http://creativecommons.org/licenses/by-nc-nd/3.0/es/ info:eu-repo/semantics/openAccess |
| Fonte |
ICORES 2013: proceedings of the 2nd International Conference on Operations Research and Enterprise Systems | Proceedings of the 2nd International Conference on Operations Research and Enterprise Systems | 16-18 Feb 2013 | Barcelona, España |
| Palavras-Chave | #Informática |
| Tipo |
info:eu-repo/semantics/conferenceObject Ponencia en Congreso o Jornada PeerReviewed |
