The IRMA Community
Newsletters
Research IRM
Click a keyword to search titles using our InfoSci-OnDemand powered search:
|
Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets
Author(s): Dhanya Pramod (Symbiosis Centre for Information Technology (SCIT), Symbiosis International (Deemed University), Pune, India)and S. Vijayakumar Bharathi (Symbiosis Centre for Information Technology (SCIT), Symbiosis International (Deemed University), Pune, India)
Copyright: 2018
Pages: 22
EISBN13: 9781522574880
Purchase
View Sample PDF
Abstract
In the digital era, organization-wide information security risk assessment has gained importance because it can impact businesses in many ways. In this article, the authors propose a model to assess the information security risk using Fuzzy Petri Nets (FPN). Deeply rooted in the OCTAVE framework, this research presents a taxonomy of risk practice areas and risk factors. The authors apply the constituents of the taxonomy to risk assessment through a well-defined FPN model. The primary motive of the article is to extend the usability of FPNs to newer and less explored domains like audit and evaluation of information security risks. The unique contribution of this article is the definition and development of a comprehensive and measurable model of risk assessment and quantification. The model can also serve as a tool to capture the risk perception of the respondents for validating the criticality of risk and facilitate the top management to invest in information security control eco-system judiciously.
Related Content
|
Manal Abdo Farhan Saif, Ahmed Tlili, Fathi Essalmi, Mohamed Jemni.
© 2019.
16 pages.
|
|
Shirley Hanshaw, Lemuria Carter.
© 2008.
11 pages.
|
|
Divya Agrawal, Padma Bonde.
© 2017.
8 pages.
|
|
Kelly O’Hara, Dulce Esteves, Rui Brás, Marco Rodrigues, Ricardo Rodrigues, Paulo Pinheiro.
© 2013.
15 pages.
|
|
Phillip Rosson.
© 2004.
17 pages.
|
|
|