Risk assessment for information security based on fuzzy membership matrix

Yan Bai; Zhong Yao; Hong Li; Yong Qiang Zhang

doi:10.1007/978-3-642-35211-9_69

Risk assessment for information security based on fuzzy membership matrix

Yan Bai
, Zhong Yao
, Hong Li
, Yong Qiang Zhang

School of Economics and Management

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

2 Scopus citations

Abstract

According to assets, threats and vulnerabilities and other factors in risk assessment model, this paper proposed an information security and risk calculation method on the basis of fuzzy membership matrix, besides, this work also designed an information security risk assessment system to implement the above method, which achieves risk assessment from three aspects-asset identification, risk calculation and risk results processing. The system improves objectivity and practicality of information security risk assessment. Also, it can generate a risk assessment report, which can be regarded as an indicator in evaluating the safety and security construction status of a company.

Original language	English
Title of host publication	Network Computing and Information Security
Subtitle of host publication	Second International Conference, NCIS 2012 Shanghai, China, December 7-9, 2012 Proceedings
Editors	Fu LeeWang, Mo Li, Yuan Luo
Pages	547-554
Number of pages	8
DOIs	https://doi.org/10.1007/978-3-642-35211-9_69
State	Published - 2012
Event	2nd International Conference on Network Computing and Information Security, NCIS 2012 - Shanghai, China Duration: 7 Dec 2012 → 9 Dec 2012

Publication series

Name	Communications in Computer and Information Science
Volume	345
ISSN (Print)	1865-0929

Conference

Conference	2nd International Conference on Network Computing and Information Security, NCIS 2012
Country/Territory	China
City	Shanghai
Period	7/12/12 → 9/12/12

Keywords

fuzzy matrix
risk assessment
risk calculation

Access to Document

10.1007/978-3-642-35211-9_69

Cite this

Bai, Y., Yao, Z., Li, H., & Zhang, Y. Q. (2012). Risk assessment for information security based on fuzzy membership matrix. In F. LeeWang, M. Li, & Y. Luo (Eds.), Network Computing and Information Security: Second International Conference, NCIS 2012 Shanghai, China, December 7-9, 2012 Proceedings (pp. 547-554). (Communications in Computer and Information Science; Vol. 345). https://doi.org/10.1007/978-3-642-35211-9_69

@inproceedings{f8f547971eb24c66ab6dd1144b0f3511,

title = "Risk assessment for information security based on fuzzy membership matrix",

abstract = "According to assets, threats and vulnerabilities and other factors in risk assessment model, this paper proposed an information security and risk calculation method on the basis of fuzzy membership matrix, besides, this work also designed an information security risk assessment system to implement the above method, which achieves risk assessment from three aspects-asset identification, risk calculation and risk results processing. The system improves objectivity and practicality of information security risk assessment. Also, it can generate a risk assessment report, which can be regarded as an indicator in evaluating the safety and security construction status of a company.",

keywords = "fuzzy matrix, risk assessment, risk calculation",

author = "Yan Bai and Zhong Yao and Hong Li and Zhang, \{Yong Qiang\}",

year = "2012",

doi = "10.1007/978-3-642-35211-9\_69",

language = "英语",

isbn = "9783642352102",

series = "Communications in Computer and Information Science",

pages = "547--554",

editor = "Fu LeeWang and \{ Li\}, Mo and \{ Luo\}, Yuan",

booktitle = "Network Computing and Information Security",

note = "2nd International Conference on Network Computing and Information Security, NCIS 2012 ; Conference date: 07-12-2012 Through 09-12-2012",

}

Bai, Y, Yao, Z, Li, H & Zhang, YQ 2012, Risk assessment for information security based on fuzzy membership matrix. in F LeeWang, M Li & Y Luo (eds), Network Computing and Information Security: Second International Conference, NCIS 2012 Shanghai, China, December 7-9, 2012 Proceedings. Communications in Computer and Information Science, vol. 345, pp. 547-554, 2nd International Conference on Network Computing and Information Security, NCIS 2012, Shanghai, China, 7/12/12. https://doi.org/10.1007/978-3-642-35211-9_69

Risk assessment for information security based on fuzzy membership matrix. / Bai, Yan; Yao, Zhong; Li, Hong et al.
Network Computing and Information Security: Second International Conference, NCIS 2012 Shanghai, China, December 7-9, 2012 Proceedings. ed. / Fu LeeWang; Mo Li; Yuan Luo. 2012. p. 547-554 (Communications in Computer and Information Science; Vol. 345).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Risk assessment for information security based on fuzzy membership matrix

AU - Bai, Yan

AU - Yao, Zhong

AU - Li, Hong

AU - Zhang, Yong Qiang

PY - 2012

Y1 - 2012

N2 - According to assets, threats and vulnerabilities and other factors in risk assessment model, this paper proposed an information security and risk calculation method on the basis of fuzzy membership matrix, besides, this work also designed an information security risk assessment system to implement the above method, which achieves risk assessment from three aspects-asset identification, risk calculation and risk results processing. The system improves objectivity and practicality of information security risk assessment. Also, it can generate a risk assessment report, which can be regarded as an indicator in evaluating the safety and security construction status of a company.

AB - According to assets, threats and vulnerabilities and other factors in risk assessment model, this paper proposed an information security and risk calculation method on the basis of fuzzy membership matrix, besides, this work also designed an information security risk assessment system to implement the above method, which achieves risk assessment from three aspects-asset identification, risk calculation and risk results processing. The system improves objectivity and practicality of information security risk assessment. Also, it can generate a risk assessment report, which can be regarded as an indicator in evaluating the safety and security construction status of a company.

KW - fuzzy matrix

KW - risk assessment

KW - risk calculation

UR - https://www.scopus.com/pages/publications/84882258483

U2 - 10.1007/978-3-642-35211-9_69

DO - 10.1007/978-3-642-35211-9_69

M3 - 会议稿件

AN - SCOPUS:84882258483

SN - 9783642352102

T3 - Communications in Computer and Information Science

SP - 547

EP - 554

BT - Network Computing and Information Security

A2 - LeeWang, Fu

A2 - Li, Mo

A2 - Luo, Yuan

T2 - 2nd International Conference on Network Computing and Information Security, NCIS 2012

Y2 - 7 December 2012 through 9 December 2012

ER -

Bai Y, Yao Z, Li H, Zhang YQ. Risk assessment for information security based on fuzzy membership matrix. In LeeWang F, Li M, Luo Y, editors, Network Computing and Information Security: Second International Conference, NCIS 2012 Shanghai, China, December 7-9, 2012 Proceedings. 2012. p. 547-554. (Communications in Computer and Information Science). doi: 10.1007/978-3-642-35211-9_69

Risk assessment for information security based on fuzzy membership matrix

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this