Fuzzy model for assessing information security risks and maintaining the level of security of ERP-systems

Міщенко, Андрій; Kurylo, O. V.; Zolotukhina, O. A.

doi:10.31673/2412-4338.2020.011451

TIT

2020

DOI: 10.31673/2412-4338.2020.011451

|View full text |Cite

Fuzzy model for assessing information security risks and maintaining the level of security of ERP-systems

Андрій Міщенко¹,

O. V. Kurylo²,

O. A. Zolotukhina³

Abstract: Робота присвячена питанню використання нечіткої моделі для оцінки ризиків інформаційної безпеки та підтримки рівня захищеності ERP-систем. Розглянуто вимоги до інформаційної безпеки ERP-систем та проаналізовано проблеми їх безпеки та вразливості. Визначено основні фактори, що впливають на оцінку ризиків.. Зважаючи на якісний, неточний та значною мірою не визначений, або неповний характер інформації про більшість факторів, запропоновано використання лінгвістичного підходу для їх опису. Такий підхід забезпечує м… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2021

2022

Publication Types

Select...

Article2

Relationship

Self Cite0

Independent2

Authors

Journals

Cited by 2 publications

References 0 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

Use of Information System Tools for Automation of Business Processes of the Enterprise

Dolgova

Yamnenko

2021

View full text Add to dashboard Cite

Introduction. Information systems play an important role in increasing the efficiency of enterprises and supply chains, which is associated with their stability. Information systems are focused on "integration of information technology solutions and business processes to satisfy the information needs of enterprises. Information systems are not only formed by the combination of information and communication technologies, but also the way people interact with these technologies to support business processes. In this sense, well-functioning information systems are particular types of working systems in which people or machines perform processes and activities that use resources to produce specific products or services for consumers. Information systems for business operations management are a pyramid of systems that integrate transaction processing systems at the bottom to management systems, decision support systems, and executive systems at the top, and support decision making at each part of the supply chain. Purpose. To study the features of the use of information systems tools for automation of business processes of the enterprise, highlighting the advantages and disadvantages of their application. Method. During the research, taking into account the purpose and objectives, general scientific and specific research methods were used. Among them: the method of scientific abstraction – in the systematization of the theoretical foundations of the use of information systems in enterprises, the method of system-structural analysis – in determining the features of information systems used to automate business processes; method of logical generalization – in the study of problems of application of information systems in enterprises; method of analysis and synthesis. Results. The importance of application of information technologies at automation of business processes of the enterprise is investigated in the article. The definition of information technologies is given. The list of advantages of use of information technologies in enterprise management is defined. Examples of programs used in the field of relationships with partners are given. Practical relevance. Due to the growing attention to the stable development of enterprises, the study aims to understand the role that information systems play in the automation of business processes. The potential of information systems for increasing the capacity to make management decisions and increasing productivity through the implementation of systems of corporate resources is important.

show abstract

Use of Information System Tools for Automation of Business Processes of the Enterprise

Dolgova

Yamnenko

2021

View full text Add to dashboard Cite

show abstract

Simulation of Information Security Risks of Availability of Project Documents Based on Fuzzy Logic

Shushura

Asieieva²,

Nedashkivskiy³

et al. 2022

IAPGOS

View full text Add to dashboard Cite

The widespread use of computer technology, its rapid development and use in almost all areas of human activity requires constant updating of information security issues. The activities of many enterprises in the field of IT, construction, and other areas are of a project nature and therefore further research on information security management of projects is relevant. Appearance of changes and the current state of the project results at certain points of time describe the documents that accompany it. In this paper, the information structure of the project is considered as a set of specific documents. During the life cycle of each project document, which includes the creation, transfer, preservation and transformation, there are generally threats to its confidentiality, integrity, accessibility and authenticity. This paper develops a method for assessing the risks of violation of the availability of project documents in solving information security problems. A formal description of many project documents in the form of a generalized hierarchical structure is presented, the connection of documents with the operations performed on them and information systems used during these operations is formalized. Given the incompleteness and dimension of the data, the based on fuzzy logic model was developed to assess the risk of document accessibility. Approaches to the assessment of the damage from the violation of the availability of the project document and the method of calculating the overall assessment of the risk of violation of the documents availability are proposed. The results presented in this paper can be used in decision-making processes regarding information security of projects in organizations that have project activities. The approaches proposed in this paper can serve as a basis for the creation of specialized information technologies to automate the calculation of project risk assessments.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Fuzzy model for assessing information security risks and maintaining the level of security of ERP-systems

Cited by 2 publications

References 0 publications

Use of Information System Tools for Automation of Business Processes of the Enterprise

Use of Information System Tools for Automation of Business Processes of the Enterprise

Simulation of Information Security Risks of Availability of Project Documents Based on Fuzzy Logic

Contact Info

Product

Resources

About