mailto:uumlib@uum.edu.my 24x7 Service; AnyTime; AnyWhere

On multi attribute decision making methods: Prioritizing information security controls

AL-Safwani, Nedher and Hassan, Suhaidi and Katuk, Norliza (2014) On multi attribute decision making methods: Prioritizing information security controls. Journal of Applied Sciences Research, 14 (16). pp. 1865-1870. ISSN 1819-544X

[thumbnail of 3a.pdf] PDF
Restricted to Registered users only

Download (742kB) | Request a copy

Abstract

This study deals with the problem of prioritization of Information Security Controls where most organizations aim to address and manage them effectively. Current information security analysis methods lack a quantitative approach and mostly depend on subjective judgments of information security experts.Although, expert opinions assist organizations in measuring the effectiveness of security controls, the subjective judgments may yield different results.Hence, a more objective approach that can be quantified is an alternative.This study implements multiple attribute decision-making concepts for prioritizing and selecting security controls using Hierarchical Adaptive Weighting (HAW) and Simple Adaptive Weighting (SAW).The results of these analysis methods are reported and compared.

Item Type: Article
Uncontrolled Keywords: Information secuity controls assessment, information security controls, multiple attribute decision making, security controls analysis
Subjects: Q Science > QA Mathematics > QA76 Computer software
Divisions: School of Computing
Depositing User: Prof. Ts. Dr. Suhaidi Hassan
Date Deposited: 06 Jul 2015 06:48
Last Modified: 27 Apr 2016 00:19
URI: https://repo.uum.edu.my/id/eprint/14741

Actions (login required)

View Item View Item