Reference Hub

This research has been cited in:

Article
Respite for SMEs: A Systematic Review of Socio-Technical Cybersecurity MetricsApplied Sciences10.3390/app11156909
Chapter
FPNs for Knowledge Representation and Reasoning: A Literature ReviewFuzzy Petri Nets for Knowledge Representation, Acquisition and Reasoning10.1007/978-981-99-5154-3_1
Conference
Information System Audit for Mobile Device Security Assessment2021 3rd International Cyber Resilience Conference (CRC)10.1109/CRC50527.2021.9392468
Article
Risk Assessment Model of Chemical Process Based on Interval Type-2 Fuzzy Petri NetsProcesses10.3390/pr11051304

Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets

Dhanya Pramod, S. Vijayakumar Bharathi

Source Title: Journal of Cases on Information Technology (JCIT)20(3)

ISSN: 1548-7717|EISSN: 1548-7725|EISBN13: 9781522542346|DOI: 10.4018/JCIT.2018070104

Cite Article Cite Article

MLA

Pramod, Dhanya, and S. Vijayakumar Bharathi. "Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets." JCIT vol.20, no.3 2018: pp.48-69. http://doi.org/10.4018/JCIT.2018070104

APA

Pramod, D. & Bharathi, S. V. (2018). Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets. Journal of Cases on Information Technology (JCIT), 20(3), 48-69. http://doi.org/10.4018/JCIT.2018070104

Chicago

Pramod, Dhanya, and S. Vijayakumar Bharathi. "Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets," Journal of Cases on Information Technology (JCIT) 20, no.3: 48-69. http://doi.org/10.4018/JCIT.2018070104

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

In the digital era, organization-wide information security risk assessment has gained importance because it can impact businesses in many ways. In this article, the authors propose a model to assess the information security risk using Fuzzy Petri Nets (FPN). Deeply rooted in the OCTAVE framework, this research presents a taxonomy of risk practice areas and risk factors. The authors apply the constituents of the taxonomy to risk assessment through a well-defined FPN model. The primary motive of the article is to extend the usability of FPNs to newer and less explored domains like audit and evaluation of information security risks. The unique contribution of this article is the definition and development of a comprehensive and measurable model of risk assessment and quantification. The model can also serve as a tool to capture the risk perception of the respondents for validating the criticality of risk and facilitate the top management to invest in information security control eco-system judiciously.

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.

Username or email: *

Password: *

Forgot individual login password?

Create individual account

Developing an Information Security Risk Taxonomy and an Assessment Model using Fuzzy Petri Nets

MLA

APA

Chicago

Export Reference

Abstract

Request Access