Ocenjevanje tveganj v informacijskih sistemih na osnovi teorije omrežij
diplomsko delo
Abstract
Ocenjevanje tveganj v informacijskih sistemih na osnovi teorije omrežij
Keywords
tveganje;ocenjevanje tveganja;omrežja;družabna omrežja;računalništvo;univerzitetni študij;diplomske naloge;
Data
| Language: | Slovenian |
|---|---|
| Year of publishing: | 2011 |
| Typology: | 2.11 - Undergraduate Thesis |
| Organization: | UL FRI - Faculty of Computer and Information Science |
| Publisher: | [P. Žvanut] |
| UDC: | 004(043.2) |
| COBISS: |
8609364
|
| Views: | 47 |
| Downloads: | 4 |
| Average score: | 0 (0 votes) |
| Metadata: |
|
Other data
| Secondary language: | English |
|---|---|
| Secondary title: | Information systems risk management based on network theory |
| Secondary abstract: | Effective risk management is an important component of any successful security program. The main objective of risk managing is helping the organization to carry out its mission. Risk management is an important part of the organization as a whole, including the executives. The result of risk assessment is a report on the risks that threaten the organization and recommendations of actions that eliminate or reduce the realization of the threat. The threat takes advantage of a vulnerability of a particular asset in the organization. In the world of IT, assets are called information assets and include servers, computers, laptops, data, etc.. An asset is considered everything in the organization that serves its operation and contains a certain degree of vulnerability. If there is an asset, there is also asset's vulnerability and the threat that can exploit it. The purpose of risk assessment is to find as many such vulnerabilities as possible, evaluate them and present a list of actions which can prevent the realization of threats. The primary purpose of this risk assessment tool was assistance for security experts in managing and processing data on risk assessments. The ultimate objective is identification of the greatest risks in the organization which are obtained with a uniform methodology. The problem that arises is that there is a lot of data which can not be handled easily. An additional problem is the presentation of obtained results to the executives, where they should be presented in easy and light way. The proposed solution to the problem is a network presentation. General knowledge of networks can assist with deducing certain rules and relationships between nodes of the network which represent the threats. Threats are related to each other based on common vulnerabilities. The network would also serve for the presentation of results. |
| Secondary keywords: | risk;risk assessment;network;social networking;computer science;diploma; |
| File type: | application/pdf |
| Type (COBISS): | Undergraduate thesis |
| Thesis comment: | Univ. v Ljubljani, Fak. za računalništvo in informatiko |
| Pages: | 93 f. |
| ID: | 23960196 |
Recommended works:
Ocenjevanje tveganj v informacijskih sistemih na osnovi teorije omrežij
2011,
diplomsko delo
Obvladovanje zaupanja v informacijskih sistemih s pomočjo simulacij
2009,
diplomsko delo
Lokacijsko označevanje podatkov v socialnih omrežjih
2010,
diplomsko delo
Aplikacije za socialna omrežja
2011,
diplomsko delo
UNISPHERE
2011,
raztegljiva infrastruktura za varno komunikacijo v porazdeljenih sistemih