2014 10th International Conference on Reliability, Maintainability and Safety (ICRMS) 2014
DOI: 10.1109/icrms.2014.7107238
|View full text |Cite
|
Sign up to set email alerts
|

Research on the calculation method of information security risk assessment considering human reliability

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1

Citation Types

0
3
0

Year Published

2016
2016
2020
2020

Publication Types

Select...
2
1
1

Relationship

0
4

Authors

Journals

citations
Cited by 4 publications
(3 citation statements)
references
References 5 publications
0
3
0
Order By: Relevance
“…HRA involves the use of qualitative and quantitative methods to assess the human contribution to risk and has been used within high reliability industries such as petro-chemical, nuclear and aviation [32]. According to Gu et al [33] human reliability is a term used to describe human performance such as the ability of a human to complete a given task without any errors in given conditions in a given time period. Gu et al [33] also states that the human factors of people involved in information security can be categorised into cognition, physiology, psychology and ability and also demonstrates how incorporating HRA in to the risk assessment function significantly affects the risk assessment output.…”
Section: Measurement and Assessmentmentioning
confidence: 99%
See 1 more Smart Citation
“…HRA involves the use of qualitative and quantitative methods to assess the human contribution to risk and has been used within high reliability industries such as petro-chemical, nuclear and aviation [32]. According to Gu et al [33] human reliability is a term used to describe human performance such as the ability of a human to complete a given task without any errors in given conditions in a given time period. Gu et al [33] also states that the human factors of people involved in information security can be categorised into cognition, physiology, psychology and ability and also demonstrates how incorporating HRA in to the risk assessment function significantly affects the risk assessment output.…”
Section: Measurement and Assessmentmentioning
confidence: 99%
“…According to Gu et al [33] human reliability is a term used to describe human performance such as the ability of a human to complete a given task without any errors in given conditions in a given time period. Gu et al [33] also states that the human factors of people involved in information security can be categorised into cognition, physiology, psychology and ability and also demonstrates how incorporating HRA in to the risk assessment function significantly affects the risk assessment output. This could subsequently affect the resultant activity taken by an organisation and again emphasises the importance of reliable assurance activities and information.…”
Section: Measurement and Assessmentmentioning
confidence: 99%
“…However, the developed and empirically validated [21], [22] Information Security Core Human Error Causes (IS-CHEC) information security HRA technique had so far only been used reactively in relation to reported information security incidents in healthcare. As stated by Gu et al [29] human reliability should be extended to address the entire information security risk management function. There is currently no published information security HRA technique or method that is designed to proactively interact directly with employees in order to identify potential causes of human error which may result in an information security incident and the associated risk exposure.…”
Section: Introductionmentioning
confidence: 99%