Information system security risk assessment based on grey relational analysis and Dempster-Shafer theory

Author

Wei Miao ; Yanhua Liu

Author_Institution

Inst. of Comput. Sci. & Technol., Beihua Univ., Jilin, China

fYear

2011

fDate

19-22 Aug. 2011

Firstpage

853

Lastpage

856

Abstract

Aim to treat uncertainty of information system security risk assessment, the writers proposed a risk assessment model combining grey relational analysis and Dempster-Shafer theory. In this model, the writers established an assessment index system and calculated the grey relational grades between the index values with different methods and the risk ratings of system. Subsequently, the grey relational grades for each risk rating were used to determine the basic probability assignment functions in Dempster-Shafer theory. The Dempster-Shafer evidence fusion strategy was applied to fuse the assessment ratings in different methods for assessment conclusion. The practical calculation result shows that the model is effective and feasible.

Keywords

grey systems; inference mechanisms; information systems; probability; security of data; Dempster-Shafer evidence fusion strategy; Dempster-Shafer theory; assessment index system; grey relational analysis; information system security; probability assignment function; risk assessment; Educational institutions; Indexes; Information security; Manganese; Risk management; Uncertainty; Dempster-Shafer theory; grey relational grade; information system security risk assessment; risk rating;

fLanguage

English

Publisher

ieee

Conference_Titel

Mechatronic Science, Electric Engineering and Computer (MEC), 2011 International Conference on

Conference_Location

Jilin

Print_ISBN

978-1-61284-719-1

Type

conf

DOI

10.1109/MEC.2011.6025597

Filename

6025597