A Practical Security Risk Analysis Process and Tool for Information System

YoonJung Chung, InJung Kim and DoHoon Lee
Volume: 2, No: 2, Page: 95 ~ 100, Year: 2006

Keywords: Risk Management, Asset, Threats, Vulnerability, Countermeasure
Full Text:

Abstract
While conventional business administration-based information technology management methods are applied to the risk analysis of information systems, no security risk analysis techniques have been used in relation to information protection. In particular, given the rapid diffusion of information systems and the demand for information protection, it is vital to develop security risk analysis techniques. Therefore, this paper will suggest an ideal risk analysis process for information systems. To prove the usefulness of this security risk analysis process, this paper will show the results of managed, physical and technical security risk analysis that are derived from investigating and analyzing the conventional information protection items of an information system.

Article Statistics
Multiple requests among the same broswer session are counted as one view (or download).
If you mouse over a chart, a box will show the data point's value.


Cite this article
IEEE Style
YoonJung Chung, InJung Kim, and DoHoon Lee, "A Practical Security Risk Analysis Process and Tool for Information System," Journal of Information Processing Systems, vol. 2, no. 2, pp. 95~100, 2006. DOI: .

ACM Style
YoonJung Chung, InJung Kim, and DoHoon Lee, "A Practical Security Risk Analysis Process and Tool for Information System," Journal of Information Processing Systems, 2, 2, (2006), 95~100. DOI: .