Scheduled System Maintenance:
On Monday, April 27th, IEEE Xplore will undergo scheduled maintenance from 1:00 PM - 3:00 PM ET (17:00 - 19:00 UTC). No interruption in service is anticipated.
By Topic

The risk control model in corporate governance —Based on conditional random fields based security risk evaluation for IT systems

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

2 Author(s)
Tang Jing ; Sch. of Bus. Adm., South China Univ. of Technol., Guangzhou, China ; Shen Leping

Reducing the risk of IT governance often get a lot of attention. Journal and newspaper articles abound, and professional books have been written on the subject. this article presents a Conditional Random Fields (CRF) based risk assessment model .We first analyzed and evaluated the existing information security risk assessment methodology, and described control processes of information systems and risk levels summarily. After that, CRF model was introduced into information system security assessment, which can improve model-based information security risk assessment method (CORAS). this article taking web-based electronic banking system for an example, we quantify the risk indicators of a given task sequence, by formal description and modeling of system flow and risk levels. The experiments demonstrate the feasibility of CRF model, which laid the foundation for information system risk assessment and IT governance security.

Published in:

Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on  (Volume:7 )

Date of Conference:

9-11 July 2010