Title :
Network Security Risk Assessment Using Bayesian Belief Networks
Author :
Kondakci, Suleyman
Author_Institution :
Fac. of Eng. & Comput. Sci., Izmir Univ. of Econ., Izmir, Turkey
Abstract :
This paper presents a causal assessment model based on Bayesian Belief Networks to analyze and quantify information security risks caused by various threat sources. The proposed model can be applied to a variety of information security evaluation tasks, risk assessment, software development projects, IT products, and other decision making systems. This unique concept can also be used for the determination of joint risk propagation and interdependence structures within computer networks, information systems, and other engineering tasks in general. By this manner, we can facilitate the determination of probabilistic outputs caused by some precalculated input probabilities or by marginal/joint probabilities found so far within the chain of an interdependence structure.
Keywords :
belief networks; probability; risk analysis; security of data; Bayesian belief networks; decision making systems; information security evaluation tasks; network security risk assessment; probabilistic outputs; software development projects; Bayesian methods; Biological system modeling; Computational modeling; Joints; Probabilistic logic; Risk management; Security; information security; quantitative risk assessment; risk modeling; threat modeling;
Conference_Titel :
Social Computing (SocialCom), 2010 IEEE Second International Conference on
Conference_Location :
Minneapolis, MN
Print_ISBN :
978-1-4244-8439-3
Electronic_ISBN :
978-0-7695-4211-9
DOI :
10.1109/SocialCom.2010.141
