首页> 外文会议>International Conference on Security and Management >The Significance of Information Security Risk Assessments - Exploring the Consensus of Raters' Perceptions of Probability and Severity

【24h】

The Significance of Information Security Risk Assessments - Exploring the Consensus of Raters' Perceptions of Probability and Severity

机译：信息安全风险评估的意义 - 探索评级对概率和严重程度的看法共识

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Identifying and assessing risks is vital in striving for adequate information security. The basis for the assessments is the probability and the severity of possible incidents affecting the confidentiality, integrity, and availability of information assets. However, assessing the probability and the severity of possible events is not straightforward. The objective of this paper is to explore the consensus of raters assessing the probability and the severity of information security incidents. Data collected through questionnaires are used to evaluate the consensus of 20 raters when assessing 105 information security incidents. The results indicate that the consensus of the raters is too low for the assessment results to provide a sound basis for decisions. In conclusion, better support is needed for assessing information security risks in order to reach the necessary consensus levels.

机译：识别和评估风险对于争取足够的信息安全性至关重要。评估的基础是影响信息资产的机密性，完整性和可用性的可能事件的概率和严重性。然而，评估可能事件的概率和严重程度并不简单。本文的目的是探讨评估信息安全事件的概率和严重程度的评级人的共识。通过调查问卷收集的数据用于在评估105个信息安全事件时评估20名评估者的共识。结果表明，评估结果对评估结果的共识太低，为决策提供了合理的基础。总之，需要更好地支持信息安全风险，以达到必要的共识水平。

著录项

来源
《International Conference on Security and Management》|2017年|278p|共7页
会议地点
作者
Jonas Hallberg; Johan Bengtsson; Niklas Hallberg; Henrik Karlzen; Teodor Sommestad;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP393.08-53;
关键词
Information security; Risk assessment; Inter-rater reliability; Consensus;

机译：信息安全;风险评估;帧间可靠性;共识;
入库时间 2022-08-21 07:48:52

相似文献

外文文献
中文文献
专利

1. Spatially explicit and multiscale ecosystem shift probabilities and risk severity assessments in the greater Mekong subregion over three decades [J] . Alphonse Kayiranga, Baozhang Chen, Huifang Zhang, Science of the total environment . 2021,第Deca1期

机译：三十年来大湄公河次区域的空间明确和多尺度生态系统转变概率和风险严重性评估
2. Exploring public perceptions of energy security risks in the UK [J] . Christina Demski, Wouter Poortinga, Nick Pidgeon Energy Policy . 2014,第MARa期

机译：探索公众对英国能源安全风险的看法
3. Exploring risk flow attack graph for security risk assessment [J] . Dai Fangfang, Hu Ying, Zheng Kangfeng, Information Security, IET . 2015,第6期

机译：探索风险流攻击图以进行安全风险评估
4. The Significance of Information Security Risk Assessments - Exploring the Consensus of Raters' Perceptions of Probability and Severity [C] . Jonas Hallberg, Johan Bengtsson, Niklas Hallberg, International Conference on Security and Management . 2017

机译：信息安全风险评估的意义 - 探索评级对概率和严重程度的看法共识
5. Exploring the Strategies Cybersecurity Specialist Need to Minimize Security Risks in Non-profit Organizations [D] . Larkey, Sonya N. 2019

机译：探索战略网络安全专家需要最大限度地减少非营利组织的安全风险
6. Use of Bayesian Belief Network techniques to explore the interaction of biosecurity practices on the probability of porcine disease occurrence in Canada [O] . Ruth Cox, Crawford W. Revie, Daniel Hurnik, -1

机译：利用贝叶斯信念网络技术探索生物安全措施与加拿大猪疾病发生概率的相互作用
7. Exploring public perceptions of energy security risks in the UK [O] . Demski, Christina C., Poortinga, Wouter, Pidgeon, Nicholas Frank 2014

机译：探索公众对英国能源安全风险的看法
8. Risk Assessment Using the Three Dimensions of Probability (Likelihood), Severity, and Level of Control [R] . Watson, C. C. 2011

机译：使用概率（可能性），严重性和控制水平三个维度进行风险评估

The Significance of Information Security Risk Assessments - Exploring the Consensus of Raters' Perceptions of Probability and Severity

摘要

著录项

相似文献

相关主题

期刊订阅