Title :
The risk control model in corporate governance —Based on conditional random fields based security risk evaluation for IT systems
Author :
Tang Jing ; Shen Leping
Author_Institution :
Sch. of Bus. Adm., South China Univ. of Technol., Guangzhou, China
Abstract :
Reducing the risk of IT governance often get a lot of attention. Journal and newspaper articles abound, and professional books have been written on the subject. this article presents a Conditional Random Fields (CRF) based risk assessment model .We first analyzed and evaluated the existing information security risk assessment methodology, and described control processes of information systems and risk levels summarily. After that, CRF model was introduced into information system security assessment, which can improve model-based information security risk assessment method (CORAS). this article taking web-based electronic banking system for an example, we quantify the risk indicators of a given task sequence, by formal description and modeling of system flow and risk levels. The experiments demonstrate the feasibility of CRF model, which laid the foundation for information system risk assessment and IT governance security.
Keywords :
risk management; security of data; conditional random fields; corporate governance; governance security; information security; information systems; risk control model; web-based electronic banking system; Analytical models; Conditional Random Fields Model; IT governance; IT governance risk assessment; information management system;
Conference_Titel :
Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on
Conference_Location :
Chengdu
Print_ISBN :
978-1-4244-5537-9
DOI :
10.1109/ICCSIT.2010.5564588
