JIPS (Çѱ¹Á¤º¸Ã³¸®ÇÐȸ)
Current Result Document :
| ÇѱÛÁ¦¸ñ(Korean Title) |
A Practical Security Risk Analysis Process and Tool for Information System |
| ¿µ¹®Á¦¸ñ(English Title) |
A Practical Security Risk Analysis Process and Tool for Information System |
| ÀúÀÚ(Author) |
YoonJung Chung
InJung Kim
DoHoon Lee
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 02 NO. 02 PP. 0095 ~ 0100 (2006. 06) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
While conventional business administration-based information technology management methods are applied to the risk analysis of information systems, no security risk analysis techniques have been used in relation to information protection. In particular, given the rapid diffusion of information systems and the demand for information protection, it is vital to develop security risk analysis techniques. Therefore, this paper will suggest an ideal risk analysis process for information systems. To prove the usefulness of this security risk analysis process, this paper will show the results of managed, physical and technical security risk analysis that are derived from investigating and analyzing the conventional information protection items of an information system.
|
| Å°¿öµå(Keyword) |
Risk Management
Asset
Threats
Vulnerability
Countermeasure
|
| ÆÄÀÏ÷ºÎ |
|
