Quantitative assessment of cyber security risk using bayesian network-based model

机译：基于贝叶斯网络模型的网络安全风险定量评估

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

This paper proposes a quantitative model for assessing cyber security risk in information security. The model can be used to evaluate the security readiness of firms in the marketplace through qualitative and quantitative tools. We propose a Bayesian network methodology that can be used to generate a cyber security risk score that takes as input a firm's security profile and data breach statistics. The quantitative model enables cyber risk to be captured in a precise and comparable fashion. The objective of the scoring model is to create a common reference in the marketplace that could enhance incentives for firms to invest and improve their security systems. This paper concludes with a demonstration of scoring an intrusion detection network.

机译：本文提出了一种评估信息安全中网络安全风险的定量模型。该模型可用于通过定性和定量工具评估市场中公司的安全准备情况。我们提出了一种贝叶斯网络方法，该方法可用于生成网络安全风险评分，该评分将公司的安全概况和数据泄露统计信息作为输入。定量模型使网络风险能够以精确且可比较的方式捕获。评分模型的目的是在市场上创建通用参考，以增强企业投资和改善其安全系统的动机。本文以对入侵检测网络进行评分的演示作为结束。

著录项

来源
《Systems and Information Engineering Design Symposium, 2009. SIEDS '09》|2009年|183-187|共5页
会议地点 Charlottesville VA(US);Charlottesville VA(US)
作者
Mo S.Y.K.; Beling P.A.; Crowther K.G.;
展开▼
作者单位

Dept. of Syst. Eng., Univ. of Virginia, Charlottesville, VA, USA;

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Internet; belief networks; information systems; probability; risk management; security of data; Bayesian network; cyber security risk; data breach statistics; firm security profile; information security; information system; intrusion detection network; quantitative assessment;

机译：互联网;信任网络;信息系统;概率;风险管理;数据安全;贝叶斯网络;网络安全风险;数据泄露统计;坚定的安全性;信息安全性;信息系统;入侵检测网络;定量评估;

相似文献

外文文献
中文文献
专利

1. Siemens and TUV SUD join forces against cyber threats: Siemens and TUV SUD have come together to address the growing risk of cyberattacks on critical infrastructure by collaborating to provide digital safety and security assessments, as well as industrial vulnerability assessments to help global energy players identify asset risk and cybersecurity solutions [J] . Mark Tisshaw Modern Power Systems: Communicating Power Technology Worldwide . 2019,第5期

机译：西门子和TUV SUD加入Cyber威胁：西门子和TUV SUD通过合作提供数字安全和安全评估，以及帮助全球能源球员识别资产的工业脆弱性评估，以促进跨国基础设施的越来越危险的网络角落的风险。风险和网络安全解决方案
2. A Bayesian network approach for cybersecurity risk assessment implementing and extending the FAIR model [J] . Jiali Wang, Martin Neil, Norman Fenton Computers & Security . 2020,第Feba期

机译：一种用于网络安全风险评估的贝叶斯网络方法，用于实施和扩展FAIR模型
3. Quantitative Metrics and Risk Assessment: The Three Tenets Model of Cybersecurity [J] . Jeff Hughes, George Cybenko Technology Innovation Management Review . 2013,第5期

机译：量化指标和风险评估：网络安全的三个原则模型
4. Quantitative Assessment of Cyber Security Risk using Bayesian Network-based model [C] . Sheung Yin Kevin Mo, Peter A. Beling, Kenneth G. Crowther Systems and Information Engineering Design Symposium . 2009

机译：基于贝叶斯网络模型的网络安全风险的定量评估
5. An Empirical Assessment of Senior Citizens' Cybersecurity Awareness, Computer Self-Efficacy, Perceived Risk of Identity Theft, Attitude, and Motivation to Acquire Cybersecurity Skills [D] . Blackwood-Brown, Carlene Gail. 2018

机译：对老年人的网络安全意识，计算机自我效能，身份盗用的感知风险，态度和获取网络安全技能的动机的经验评估
6. Workshop on Quantitative Models for Developmental Toxicity Risk Assessment: Overview of a workshop on quantitative models for developmental toxicity risk assessment [O] . Carole A. Kimmel, Dorothy G. Wellington, William Farland, 1989

机译：发育毒性风险评估定量模型讲习班：发育毒性风险评估定量模型讲习班概述
7. Quantitative Metrics and Risk Assessment: The Three Tenets Model of Cybersecurity [O] . Jeff Hughes, George Cybenko 2013

机译：定量指标和风险评估：网络安全三个宗特模型

Quantitative assessment of cyber security risk using bayesian network-based model

摘要

著录项

相似文献

相关主题

期刊订阅