Assessing Information Security Risks using Pairwise Weighting
Henrik Karlzén, Johan Bengtsson, Jonas Hallberg
2017
Abstract
In practice, assessing information security risks is difficult since available methods lack specificity on how to perform the assessments as well as what input should be used. Thus, the process becomes resource demanding with fairly large rater-dependency. An established way of facilitating rating processes is to weight objects against each other, rather than rating each object independently on an absolute scale. In this paper, we investigate whether such a method, inspired by the Analytic Hierarchy Process, can be useful for assessing information security risks. However, the new method did not result in higher inter-rater reliability or lower cognitive load. This result was true both for experts and non-experts, as well as among raters with different cognitive styles.
DownloadPaper Citation
in Harvard Style
Karlzén H., Bengtsson J. and Hallberg J. (2017). Assessing Information Security Risks using Pairwise Weighting . In Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP, ISBN 978-989-758-209-7, pages 318-324. DOI: 10.5220/0006138203180324
in Bibtex Style
@conference{icissp17,
author={Henrik Karlzén and Johan Bengtsson and Jonas Hallberg},
title={Assessing Information Security Risks using Pairwise Weighting},
booktitle={Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,},
year={2017},
pages={318-324},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0006138203180324},
isbn={978-989-758-209-7},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 3rd International Conference on Information Systems Security and Privacy - Volume 1: ICISSP,
TI - Assessing Information Security Risks using Pairwise Weighting
SN - 978-989-758-209-7
AU - Karlzén H.
AU - Bengtsson J.
AU - Hallberg J.
PY - 2017
SP - 318
EP - 324
DO - 10.5220/0006138203180324