|
Abstract
|
|
|---|---|
| Assets are interrelated in risk analysis methodologies for information systems promoted by international standards. This means that an attack on one asset can be propagated through the network and threaten an organization?s most valuable assets. It is necessary to valuate all assets, the direct and indirect asset dependencies, as well as the probability of threats and the resulting asset degradation. However, the experts in charge to assign such values often provide only vague and uncertain information. Fuzzy logic can be very helpful in such situation, but it is not free of some difficulties, such as the need of a proper arithmetic to the model under consideration or the establishment of appropriate similarity measures. Throughout this paper we propose a fuzzy treatment for risk analysis models promoted by international methodologies through the establishment of such elements. | |
|
International
|
Si |
|
Congress
|
8ª Conferencia Ibérica de Sistemas e Tecnologías de Informaçao |
|
|
960 |
|
Place
|
Lisboa |
|
Reviewers
|
Si |
|
ISBN/ISSN
|
978-989-96247-9-5 |
|
|
|
|
Start Date
|
19/06/2013 |
|
End Date
|
22/06/2013 |
|
From page
|
557 |
|
To page
|
562 |
|
|
Sistemas e Tecnologías de Informaçao |