مرکز منطقه ای اطلاع رساني علوم و فناوري - Performance Metrics for Information Security Risk Management

DocumentCode :

882973

Title :

Performance Metrics for Information Security Risk Management

Author :

Ryan, Julie J C H ; Ryan, Daniel J.

Author_Institution :

George Washington Univ., Washington, DC

Volume :

Issue :

fYear :

2008

Firstpage :

Lastpage :

Abstract :

Qualitative methods are available for risk management, but better practice would use quantitative risk management based on expected losses and related metrics. Measuring the success of information security investments is best accomplished by measuring reductions in expected loss.

Keywords :

risk management; security of data; information security; performance metrics; qualitative methods; risk management; Control systems; Data security; Equations; Information management; Information security; Investments; Loss measurement; Privacy; Risk analysis; Risk management; information security; risk management; security and protection; security metrics;

fLanguage :

English

Journal_Title :

Security & Privacy, IEEE

Publisher :

ieee

ISSN :

1540-7993

Type :

jour

DOI :

10.1109/MSP.2008.125

Filename :

4639021

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=882973