THE MODEL FOR RISK ASSESSMENT ERP-SYSTEMS INFORMATION SECURITY

V. S. Oladko; A. A. Belozerova

Безопасность информационных технологий (Dec 2016)

THE MODEL FOR RISK ASSESSMENT ERP-SYSTEMS INFORMATION SECURITY

V. S. Oladko,
A. A. Belozerova

Affiliations

V. S. Oladko: College of computer science and programming, Federal state educational budget institution of higher professional education "Financial University under the Government of the Russian Federation"
A. A. Belozerova: "Information Security" department, Volgograd State University

Journal volume & issue: Vol. 23, no. 4
pp. 59 – 66

Abstract

Read online

The article deals with the problem assessment of information security risks in the ERP-system. ERP-system functions and architecture are studied. The model malicious impacts on levels of ERP-system architecture are composed. Model-based risk assessment, which is the quantitative and qualitative approach to risk assessment, built on the partial unification 3 methods for studying the risks of information security - security models with full overlapping technique CRAMM and FRAP techniques developed.

Published in Безопасность информационных технологий

ISSN: 2074-7128 (Print); 2074-7136 (Online)
Publisher: Joint Stock Company "Experimental Scientific and Production Association SPELS
Country of publisher: Russian Federation
LCC subjects: Technology: Technology (General): Industrial engineering. Management engineering: Information technology; Science: Science (General): Cybernetics: Information theory
Website: https://bit.spels.ru

About the journal

Abstract

Keywords