文章基本信息

标题：Risk Indicators for Information Security Risk Identification
本地全文：下载
作者：Upasna Saluja ; Norbik Bashah Idris
期刊名称：International Journal of Computer Science and Network
印刷版ISSN：2277-5420
出版年度：2014
卷号：3
期号：5
页码：393-401
出版社：IJCSN publisher
摘要：Information Security Risk identification in today’s methodologies is asset-centric, thus making it tedious and time consuming. It is subjective and depends a lot on expertise of information security practitioners conducting the risk assessment. This paper has proposed a methodology for Risk Identification that drives away from an asset-centric approach by incorporating the concept of Risk Indicators, which is the foundation of Risk Identification in finance and medicine. This Risk Identification approach enables statistical analysis for Risk Assessment making it objective and scientific thus inspiring greater confidence among stakeholders
关键词：Information Security;Risk Assessment;Risk Identification