Improvement of Verification of a Model Supporting Decision-Making on Information Security Risk Treatment by Using Statistical Data

This paper introduces previous studies that propose a model supporting decision-making on information security risk treatment by the top management of an organization and its assessment using statistical data. The reason that statistical data are used to assess the model is that the data necessary f...

Full description

Saved in:
Bibliographic Details
Published in:Journal of disaster research 2017-10, Vol.12 (5), p.1060-1072
Main Authors: Aiba, Ritsuko, Hiromatsu, Takeshi
Format: Article
Language:English
Citations: Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:This paper introduces previous studies that propose a model supporting decision-making on information security risk treatment by the top management of an organization and its assessment using statistical data. The reason that statistical data are used to assess the model is that the data necessary for information security risk treatment are not generally disclosed for security reasons. A verification using actual data is generally difficult. This paper therefore proposes improvements to the assessment of the model using statistical data. A method to calculate the values used in the model, closer to the actual data is proposed to have more effective results by the model.
ISSN:1881-2473
1883-8030
DOI:10.20965/jdr.2017.p1060