94
Views
10
CrossRef citations to date
0
Altmetric
Original Articles

Quantitative risk analysis method of information security-Combining fuzzy comprehensive analysis with information entropy

, &
Pages 149-165 | Received 01 Nov 2015, Published online: 27 Dec 2016
 

Abstract

Quantitative risk assessment method based on information entropy: Because there was short effective assessment way for the risk level of the whole information system. I brought the information entropy into risk assessment of information security. The definition of risk degree was given first, which was the Likelihood estimate of probability and impact of risk, to scale risk degree of the whole information system. Since the evaluation on the probability and impact of risk were fuzzy, the risk factors were evaluated by means of fuzzy comprehensive evaluation method. For this method, the weight of each risk would be gained by entropy-weight coefficient; the subjective of expert assignment will be overcome. The risk degree will be gained by combining fuzzy comprehensive evaluation with information entropy, to measure off the risk degree of information system. In the paper I gave examples to show the application of this method.

Reprints and Corporate Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

To request a reprint or corporate permissions for this article, please click on the relevant link below:

Academic Permissions

Please note: Selecting permissions does not provide access to the full text of the article, please see our help page How do I view content?

Obtain permissions instantly via Rightslink by clicking on the button below:

If you are unable to obtain permissions via Rightslink, please complete and submit this Permissions form. For more information, please visit our Permissions help page.