|
|
|
ナガタ キヨシ 永田 清 経営学部 経営学科 教授 |
|
■ 標題 Risk Evaluation for Critical Assets with Fuzzy Inference Mechanism in an Information Evaluation System |
|
■ 概要 We focused on the information assets and investigate the information security evaluation system with some multi-participants' decision making systems. We have already proposed a method to extract the critical assets from all organizational assets related to the information system. We applied the Modified Structural Modeling Method from the view points of C.I.A. to the extraction. Our ultimate goal is to have a good information security evaluation system in which some kind of methods for decision making, problem solving method etc. are integrated. In this paper, we propose an evaluation method for evaluating the risks to each critical asset according to the possible threats from the Risk Profile Worksheet for Information in OCTAVE-S (an information security evaluation system invented by the SEI at Carnegie Melon University). Probability and impact are usually used as main factors to evaluate risks numerically, and the values for them are somehow intuitively given. Since we considered that these values have obscurity and not always determined with enough simplicity, we introduce the fuzzy inference for an evaluation system. Finally we verify that the system is effectively performed by applying it to a simulated organization. Kiyoshi Nagata, Michio Amagasa, Yutaka Kigawa, and Dongmei Cui 共著 Proceedings of the 9th Asia Pacific Industrial Engineering and Management Systems Conference 2008 pp.2630-2640 2008/12 |
 Copyright(C) 2011 Daito Bunka University, All rights reserved. |