RAMEX - A PROTOTYPE EXPERT-SYSTEM FOR COMPUTER SECURITY RISK ANALYSIS AND MANAGEMENT

被引：10

作者：

KAILAY, MP ^{[1
]}

JARRATT, P ^{[1
]}

机构：

[1] UNIV BIRMINGHAM,SCH COMP SCI,BIRMINGHAM B15 2TT,W MIDLANDS,ENGLAND

来源：

COMPUTERS & SECURITY | 1995年 / 14卷 / 05期

关键词：

RISK ANALYSIS; RISK MANAGEMENT; INTENTIONAL THREATS; INFORMATION CLASSIFICATION; VULNERABILITIES; COUNTERMEASURES; BUSINESS IMPACT ASSESSMENT; EXPERT SYSTEM;

D O I：

10.1016/0167-4048(95)00013-X

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Information security is emerging as the business risk of the 90s for many commercial organizations. The commercia sector should recognise the need for a structured approach to security assessment in the form of risk analysis. This paper describes the development of RAMeX, a qualitative based prototype expert system designed for small to medium-sized commercial organizations.

引用

页码：449 / 463

页数：15