Information security risk evaluation method based on fuzzy matrix and group decision

doi:10.3778/j.issn.1002-8331.2010.12.005

Computer Engineering and Applications ›› 2010, Vol. 46 ›› Issue (12): 17-20.DOI: 10.3778/j.issn.1002-8331.2010.12.005

• 博士论坛 • Previous Articles Next Articles

Information security risk evaluation method based on fuzzy matrix and group decision

LV Jun-jie¹，WANG Yuan-zhuo²

1.School of Business，Beijing Technology and Business University，Beijing 100048，China
2.Institute of Computing Technology，Chinese Academy of Sciences，Beijing 100190，China

Received:2010-01-15 Revised:2010-03-09 Online:2010-04-21 Published:2010-04-21
Contact: LV Jun-jie

信息安全风险模糊群决策评估方法

吕俊杰¹，王元卓²

1.北京工商大学商学院，北京 100048
2.中国科学院计算技术研究所，北京 100190

通讯作者: 吕俊杰

Abstract

Abstract: Aiming at solving the difficulty of obtaining objective date on information security，this paper proposes an information security risk evaluation method based on fuzzy matrix and group decison.Firstly，the language estimates of risk probability and risk outcome are related to triangular fuzzy number.Secondly，a formulation for aggregating opinions and a method to select the positive and negative ideal solution are put forward.Then the threat severity about risk can be derived.Finally，an example is given to illustrate the application of the proposed method.

Key words: information security, risk evaluation, triangular fuzzy number, group decision

摘要： 信息安全风险评估是对信息安全进行风险管理的最根本依据，信息安全风险评估的客观性和准确性对保障信息系统安全起着重要作用。针对信息安全风险数据难以获取、不确定性较多的特点，给出了一种基于模糊评价矩阵的信息安全风险群决策评估方法。首先将语言评价转化为定量的模糊评价，利用三角模糊数来建立信息安全风险的可能性矩阵和损失矩阵，然后通过对专家意见的集结，得到信息安全风险矩阵。其次给出了三角模糊数风险矩阵正理想解和负理想解的选取方法，以及风险严重程度的比较依据，对威胁的风险大小进行分析与评判。最后通过一个算例对该方法进行了说明。

关键词: 信息安全, 风险评估, 三角模糊数, 群决策

CLC Number:

TP309

LV Jun-jie¹，WANG Yuan-zhuo². Information security risk evaluation method based on fuzzy matrix and group decision[J]. Computer Engineering and Applications, 2010, 46(12): 17-20.

吕俊杰¹，王元卓². 信息安全风险模糊群决策评估方法[J]. 计算机工程与应用, 2010, 46(12): 17-20.

[1]	ZHU Yongming, QIU Wenjing. Correlation Coefficient of Probability Multi-valued Neutrosophic Set and Its Application [J]. Computer Engineering and Applications, 2021, 57(15): 186-192.
[2]	ZHANG Junfang, ZHOU Yixuan, ZHOU Ligang, XIAO Jian. Approach to Multiple Attribute Decision Making Based on Pythagorean Hesitant Fuzzy Cross Entropy [J]. Computer Engineering and Applications, 2020, 56(9): 198-203.
[3]	ZHAO Huiyan, LI Boquan, ZHANG Hui, LI Yongyi. Group Decision Making Method of Bonferroni Mean Operator with Linguistic Proportional 2-Tuple [J]. Computer Engineering and Applications, 2020, 56(2): 158-163.
[4]	SU Mengke, KONG Xiangzhi. Application of Intuitionistic Dual Hesitant Fuzzy Sets in Multi-attribute Group Decision Making [J]. Computer Engineering and Applications, 2020, 56(17): 273-278.
[5]	WANG Tong, ZHU Minling. Study on Fast Realization of Serial Test and Approximate Entropy Test [J]. Computer Engineering and Applications, 2020, 56(15): 113-117.
[6]	MA Qinggong. Interval-Valued Hesitant Fuzzy M-Symmetric Mean and Its Group Decision Making Model [J]. Computer Engineering and Applications, 2020, 56(11): 156-163.
[7]	GUO Haoyue, FAN Chongjun. Fuzzy Ranking Method Considering Decision-Makers Weight and Core Rating [J]. Computer Engineering and Applications, 2020, 56(10): 163-170.
[8]	WANG Ning, ZHU Feng. Probabilistic Uncertain Linguistic Entropy and Its Application in Multi-attribute Group Decision Making [J]. Computer Engineering and Applications, 2020, 56(1): 142-149.
[9]	ZHOU Xiaoling1, MA Qinggong2. Probabilistic Hesitant Fuzzy Algorithm and Its Application for Selection Method of Network Public Opinion Prediction Model [J]. Computer Engineering and Applications, 2019, 55(4): 179-184.
[10]	LIANG Yuying. Selection of Data Products Based on Probabilistic Hesitant Fuzzy Information Aggregation Algorithm [J]. Computer Engineering and Applications, 2019, 55(3): 219-224.
[11]	PAN Weiqiang. Improved Interval-Valued Hesitant Aggregation Operators and Their Applications to Logistics Enterprise Selection Decision-Making [J]. Computer Engineering and Applications, 2019, 55(20): 232-239.
[12]	LIN Weihua1，2, LI Jinjin2, WU Yuning1，3. Multi-attribute group decision method based on dominance relation [J]. Computer Engineering and Applications, 2018, 54(9): 237-242.
[13]	LV Congdong. Relation between IP-secure and TA-secure in intransitive non-interference [J]. Computer Engineering and Applications, 2018, 54(8): 78-84.
[14]	XU Guoyu, MIAO Xuna, ZHANG Junfeng, JIANG Tao, MA Xiaofei. Review of implicit authentication for mobile devices [J]. Computer Engineering and Applications, 2018, 54(6): 19-25.
[15]	DING Heng，LI Yanlai. Multiple attribute group decision making method based on Pythagorean fuzzy power weighted average operator [J]. Computer Engineering and Applications, 2018, 54(5): 1-6.

Information security risk evaluation method based on fuzzy matrix and group decision

信息安全风险模糊群决策评估方法

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics