By Topic

Information security risk assessment using Bayesian networks

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$33 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

3 Author(s)
R. M. Alguliev ; Institute of Information Technology of ANAS, 9, F.Agayev str., Baku, Azerbaijan Republic, AZI 141 ; S. Derakhshandeh ; Y. N. Imamverdiyev

Given the increasing dependence of information society on information and communication technologies, the information security risks of these systems should be measured and improved. In this paper, we propose to model information security risks based on attack graphs as a special Bayesian network. Bayesian networks allow to combine historical quantitative information with qualitative information in a systematic way. It can also provide the capabilities of using conditional probabilities to address the general cases of interdependency between vulnerabilities.

Published in:

Application of Information and Communication Technologies, 2009. AICT 2009. International Conference on

Date of Conference:

14-16 Oct. 2009