논문 상세보기

정보보안 예산 수립에서 퍼지 AHP의 적용을 통한 위험 비용 분석 KCI 등재

Cost Risk Analysis for Preparing Budgets of Information Security using Fuzzy AHP

  • 언어KOR
  • URLhttps://db.koreascholar.com/Article/Detail/246058
구독 기관 인증 시 무료 이용이 가능합니다. 4,000원
대한안전경영과학회지 (Journal of Korea Safety Management & Science)
대한안전경영과학회 (Korea Safety Management & Science)
초록

Recently, the breakdown of online banking servers and the leakage of customer information give rise to much concern about the security of information systems in financial and banking companies in Korea. The enforcement of security for information system becomes much more important issue than earlier. However, the security reinforcement of information system is restricted by a budget. In addition, the activities' cost to secure information system from threatening are under uncertain circumstances and should be established by a human decision maker who is basically uncertain and vague. Thus, making the budget for information system is exposed to any extent of the risk for these reasons. First, we introduce brief fuzzy set theory and fuzzy AHP (Analytic Hierarchy Process) methodology. Then, the cost elements that comprise yearly budget are presented and the priorities among the cost elements are calculated by fuzzy AHP. The cost elements that are exposed to risk are evaluated from the both perspectives of the risk impact and risk occurrence possibility which are expressed as linguistic terms. To get information on the risk profiles-pessimistic, most likely, and optimistic-for each cost element, the evaluation is accomplished and the result is presented. At last, the budget ranges-minimum, mode, maximum-for each cost element are estimated with the consideration of the risk profiles.

저자
  • 류시욱 | Ryu, Si-Wook
  • 허덕규 | Her, Duk-Gyu