Title :
Application of fuzzy set theory to evaluate the rate of aggregative risk in information security
Author :
Tamjidyamcholo, Alireza ; Yamchello, Hamed Tamjid ; Bin, Mohd Sapiyan ; Gholipour, Rahmatollah
Author_Institution :
Dept., Islamic Azad Univ., Tehran, Iran
Abstract :
Organizations use different types of information system to reach their goals. Decision makers are required to allocate a security budget and treatment strategy based on the risk priority of information systems. Each of the information systems has different components or assets. However, there is difficulty in aggregating the risk of each component. In this research a model is created to aggregate the risk of information system components to support decisions. Since there is uncertainty in the information security risk analysis area, we used fuzzy set theory in our model.
Keywords :
decision making; fuzzy set theory; information systems; organisational aspects; security of data; aggregative risk; decision makers; fuzzy set theory; information security risk analysis area; information system components; organizations; risk priority; security budget; treatment strategy; Educational institutions; Fuzzy set theory; Information security; Risk management; Uncertainty; Fuzzy Set; Information Security; Risk Aggregation; Risk Analysis;
Conference_Titel :
Research and Innovation in Information Systems (ICRIIS), 2013 International Conference on
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4799-2486-8
DOI :
10.1109/ICRIIS.2013.6716745
