INFORMATION SECURITY RISK ASSESSMENT: BAYESIAN PRIORITIZATION FOR AHP GROUP DECISION MAKING

Eren-Dogu, Zeynep; Celikoglu, Can

INFORMATION SECURITY RISK ASSESSMENT: BAYESIAN PRIORITIZATION FOR AHP GROUP DECISION MAKING

Atıf İçin Kopyala

Eren-Dogu Z. F., Celikoglu C. C.

INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL, cilt.8, sa.11, ss.8019-8032, 2012 (SCI-Expanded)

Yayın Türü: Makale / Tam Makale
Cilt numarası: 8 Sayı: 11
Basım Tarihi: 2012
Dergi Adı: INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL
Derginin Tarandığı İndeksler: Science Citation Index Expanded (SCI-EXPANDED), Scopus
Sayfa Sayıları: ss.8019-8032
Anahtar Kelimeler: Information security, Risk assessment, Analytic hierarchy process (AHP), Group decision making (GDM), Bayesian prioritization procedure (BPP)
Dokuz Eylül Üniversitesi Adresli: Evet

Özet

Increasing complexity of risk management requires the use of more flexible approaches to measure information security risk. Adapting complex risk analysis tools in today's information systems is a very difficult task due to the shortage of reliable data. Analytic Hierarchy Process group decision making (AHP-GDM) offers a technical support for risk analysis by taking the judgements of managers and systematically calculating the relative risk values. This paper presents how Bayesian Prioritization procedure (BPP) provides a more effective way of risk assessment than proposed by the conventional approaches used in AHP-GDM.