AL-Safwani, Nedher and Hassan, Suhaidi and Katuk, Norliza (2014) On multi attribute decision making methods: Prioritizing information security controls. Journal of Applied Sciences Research, 14 (16). pp. 1865-1870. ISSN 1819-544X

PDF Restricted to Registered users only Download (742kB) | Request a copy

Abstract

This study deals with the problem of prioritization of Information Security Controls where most organizations aim to address and manage them effectively. Current information security analysis methods lack a quantitative approach and mostly depend on subjective judgments of information security experts.Although, expert opinions assist organizations in measuring the effectiveness of security controls, the subjective judgments may yield different results.Hence, a more objective approach that can be quantified is an alternative.This study implements multiple attribute decision-making concepts for prioritizing and selecting security controls using Hierarchical Adaptive Weighting (HAW) and Simple Adaptive Weighting (SAW).The results of these analysis methods are reported and compared.

Item Type:	Article
Uncontrolled Keywords:	Information secuity controls assessment, information security controls, multiple attribute decision making, security controls analysis
Subjects:	Q Science > QA Mathematics > QA76 Computer software
Divisions:	School of Computing
Depositing User:	Prof. Ts. Dr. Suhaidi Hassan
Date Deposited:	06 Jul 2015 06:48
Last Modified:	27 Apr 2016 00:19
URI:	https://repo.uum.edu.my/id/eprint/14741

Actions (login required)

View Item