Add to Quick Collection
Please use this identifier to cite or link to this item: http://hdl.handle.net/1959.14/119164
27 Visitors
31 Hits
0 Downloads
- Title
- A Novel security risk evaluation for information systems
- Related
- Japan-China Joint Workshop on Frontier of Computer Science and Technology (1 - 3 November 2007 : Wuhan, China)
- Related
- Japan-China Joint Workshop on Frontier of Computer Science and Technology : (FCST 2007) : proceedings : 1-3 November, 2007, Wuhan, China, p.67-73
- DOI
- 10.1109/FCST.2007.9
- Publisher
- Los Alamitos, Calif : IEEE Computer Society
- Date
- 2007
- Author/Creator
- Gan, Zaobin
- Author/Creator
- Tang, Jiufei
- Author/Creator
- Wu, Ping
- Author/Creator
- Varadharajan, Vijay
- Description
- Quantitative security risk evaluation of information systems is increasingly drawing more and more attention. This paper extends the attack tree model, and proposes a new quantitative risk evaluation method .While the risk value of the leaf node (atomic attack) is quantified, the multi- attribute utility theory is adopted. All algorithms are presented for each steps of this new evaluation method. In addition, a worked example is also experimented in this paper. The experimental result shows that the novel method can not only make the evaluation result more reasonable and objective, but also offer a good foundation for the implementation of the automatic evaluation tool.
- Description
- 7 page(s)
- Subject Keyword
- 089900 Other Information and Computing Sciences
- Resource Type
- conference paper
- Organisation
- Macquarie University. Dept. of Computing
- Identifier
- http://hdl.handle.net/1959.14/119164
- Identifier
- ISBN:9780769530369
- Identifier
- mq-rm-2009008521
- Language
- eng
- Reviewed
Macquarie University ResearchOnline
