The integrated risk analysis and risk assessment method of information security
DOI:
https://doi.org/10.18372/2410-7840.16.7543Keywords:
risk, risk analysis, risk assessment, risk analysis and risk assessment system, risk parameters, the fuzzy variable, standard values, the terms transformation of linguistic variables, the integrated risk analysis and risk assessment methodAbstract
One of the stages of information security management system construction is provided with the realization of risk analysis and risk assessment process. Often in the assessment process there are some situations when theexpert can’t always clearly assess the information securitythreat. To solve these tasks the known determined or fuzzy methods are applied. According to these methods the corresponding systems have been developed. Practically,in some cases, it is necessary to carry out a risk assessmentwith a combination of approaches of the expertsinterpretation judgments both regarding their capabilitiesto determine the meaning of received assessedparameters, and their uncertainty in the accuracy of priorities.The specified assessment possibilities are not integratedin the existing systems. To address a challenge andsimplify the risks assessment the integrated risk analysisand risk assessment method is provided, which, in contrastto the well-known, enables to operate simultaneously the clear and fuzzy sets with the ability to transform theterms of linguistic variables.References
. Корченко А.Г. Методы анализа и оценки рисков потерь государственных информационных ресурсов / А.Г. Корченко, В.П. Щербина, С.В. Казмирчук // Защита информации – 2012. –
№1. – С. 126-139.
. Казмирчук С.В. Анализ и оценивание рисков информационных ресурсов / С.В. Казмирчук // Защита информации – 2013. – Том 15 №1 (58). – С. 37-46.
. Казмирчук С.В. Анализа и оценивания рисков информационных ресурсов в нечетких условиях / С.В. Казмирчук // Защита информации – 2013. – Том 15 №2 (59). – С. 133-140.
. Корченко А.Г. Интегрированное представление параметров риска / Корченко А.Г., Иванченко Е.В., Казмирчук С.В. // Защита информации – 2011. – №1 (50). – С. 96 – 101.
. Казмирчук С.В. Метод трансформирования термов лингвистических переменных в задачах анализа и оценивания рисков информационной безопасности / С.В. Казмирчук // Защита ин-
формации – 2013. – Том 15 №3 (60). – С. 268-276.
Downloads
Published
How to Cite
Issue
Section
License
The scientific journal adheres to the principles of Open Access and provides free, immediate, and permanent access to all published materials without financial, technical, or legal barriers for readers.
All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.
Copyright
Authors who publish their works in the journal:
-
retain the copyright to their publications;
-
grant the journal the right of first publication of the article;
-
agree to the distribution of their materials under the CC BY 4.0 license;
-
have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.
