Information security risk assessment methodology research: Group decision making and analytic hierarchy process

Proceedings - 2010 2nd WRI World Congress on Software Engineering, WCSE 2010

Volumn 2, Issue , 2010, Pages 157-160

  Xinlan, Zhang ^a   Zhifang, Huang ^a   Guangfu, Wei ^a   Xin, Zhang ^a  

^a CHINA UNIVERSITY OF GEOSCIENCES   (China)

Author keywords

Analytic hierarchy process; Group decision making; Information security; Risk assessment

Indexed keywords

ANALYTIC HIERARCHY; GROUP DECISION MAKING; INFORMATION SECURITY; INFORMATION SECURITY RISK ASSESSMENT; INFORMATION SYSTEMS SECURITY; MANAGEMENT SUPPORT; POTENTIAL RISKS; QUANTITATIVE METHODOLOGY; RISK ASSESSMENT METHODOLOGIES; RISK IMPACT; RISK PROBABILITIES; TEST CASE;

ANALYTIC HIERARCHY PROCESS; COLLECTOR EFFICIENCY; DECISION MAKING; HIERARCHICAL SYSTEMS; INFORMATION MANAGEMENT; RATING; RISK ANALYSIS; RISK ASSESSMENT; RISK MANAGEMENT; SOFTWARE ENGINEERING;

SECURITY OF DATA;

EID: 79952913713     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/WCSE.2010.55     Document Type: Conference Paper

References (11)

1. Barry Boehm, "Software Risk Management", Springer Berlin, 1989, vol.387, pp: 1-19.
2. GB/T20984-2007, Information Security Technology-Risk assessment specification for information security.
3. Thomas L. Saaty, "How to make a decision: The Analytic Hierarchy Process", European Journal of Operational Research, 1990, vol.48, pp: 9-26.
4. Fan Hong, Information security risk assessment standards, Peking University Press, Beijing, 2008, July.
5. Vincent S. Lai, Bo K. Wong, and Waiman Cheung, "Group decision making in a multiple criteria environment: A case using the AHP in software selection", European Journal of Operational Research, 2002, vol.137, pp:134-144.
6. Thomas L. Saaty, Jen S. Shang, "Group decision-making: Head-count versus intensity of preference", Socio-Economic Planning Sciences, 2007, vol.41, pp: 22-37. (Pubitemid 44873922)
7. Yuan Lei, "Goup Decision making methodology research based on AHP", Master Dissertation of Heifei University Technology, 2007, May.
8. S. Mohammad, H. Mojtahedi, S. Meysam Mousani, and Ahmad Makui, "Project risk identification and assessment simultaneously using multi-attribute group decision making technique", Safety Science, 2010, vol.48, pp: 499-507.
9. Xu Cuihua, Lin Jiajun, "An information systems security evaluation model based on AHP and GRAP", IEEE Computer Science, 2009, Vol.105, pp:493-496.
10. Liu Huaixing, Wu Shaomin, Ye Erjiang, Yang Shisong, "Research of application of AHP to information security risk assessement", Journal of Information 2006, no.5, pp:14-16.
11. Zhang Yongmei, Wang Ying, Li Shuren, Dang Depeng, Wu Jianjun "Assesing information security risk of the emergency platform based on AHP", Journal of Beijing Normal University, 2009, no.8, pp:363-366.