A Fuzzy approach based on dynamic programming and metaheuristics for selecting safeguards for risk management for information systems
| Data(s) |
2014
|
|---|---|
| Resumo |
In this paper we focus on the selection of safeguards in a fuzzy risk analysis and management methodology for information systems (IS). Assets are connected by dependency relationships, and a failure of one asset may affect other assets. After computing impact and risk indicators associated with previously identified threats, we identify and apply safeguards to reduce risks in the IS by minimizing the transmission probabilities of failures throughout the asset network. However, as safeguards have associated costs, the aim is to select the safeguards that minimize costs while keeping the risk within acceptable levels. To do this, we propose a dynamic programming-based method that incorporates simulated annealing to tackle optimizations problems. |
| Formato |
application/pdf |
| Identificador | |
| Idioma(s) |
eng |
| Publicador |
E.T.S. de Ingenieros Informáticos (UPM) |
| Relação |
http://oa.upm.es/37495/1/37495_INVE_MEM_2014_193577.pdf http://www.scitepress.org/Portal/ProceedingsDetails.aspx?ID=WatwY71jL/E=&t=1 MTM2011- 28983-C03-03 S2009/ESP-1685 |
| Direitos |
http://creativecommons.org/licenses/by-nc-nd/3.0/es/ info:eu-repo/semantics/openAccess |
| Fonte |
Proceedings of the 3rd International Conference on Operations Research and Enterprise Systems | 3rd International Conference on Operations Research and Enterprise Systems (ICORES 2014) | 6-8- Mar 2014 | Angers, Francia |
| Palavras-Chave | #Sin determinar #Matemáticas |
| Tipo |
info:eu-repo/semantics/conferenceObject Ponencia en Congreso o Jornada PeerReviewed |
