A Novel Network Security Risk Assessment Approach by Combining Subjective and Objective Weights under Uncertainty

Duan, Yancui; Cai, Ya-Chun; Wang, Zhikang; Deng, Xinyang

doi:10.3390/app8030428

Cited by 12 publications

(7 citation statements)

References 51 publications

(75 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The D number concept was developed by Deng [48] as an effective representation of missing data and incomplete decision-making information. It has been shown that D numbers can overcome the existing deficiencies in traditional Dempster-Shafer theories [49,50]. D numbers have been widely applied in the comprehensive evaluation field.…”

Section: Comprehensive Evaluation Methods Under D Numbersmentioning

confidence: 99%

A Comprehensive Evaluation Model for Curtain Grouting Efficiency Assessment Based on Prospect Theory and Interval-Valued Intuitionistic Fuzzy Sets Extended by Improved D Numbers

et al. 2019

View full text Add to dashboard Cite

Grouting-efficiency evaluation is a key element in grouting-construction control. However, most existing grouting-efficiency evaluation models do not consider the hesitation and bounded rationality of experts and have difficulty in handling the problem of incomplete decision-making information generated by experts. Furthermore, the diversity of the evaluation indicators used can be further improved. This study conducts a comprehensive evaluation model to address these problems. An objective and reasonable fuzzy evaluation method is demonstrated through the integration of interval-valued intuitionistic fuzzy sets, prospect theory, and improved D numbers. The secondary permeability index is introduced to establish a more scientific evaluation indicator system. The proposed model is implemented in evaluating the curtain-grouting efficiency of a hydropower station, and its consistency, representativeness, and superiority are validated and analyzed.

show abstract

Section: Comprehensive Evaluation Methods Under D Numbersmentioning

confidence: 99%

A Comprehensive Evaluation Model for Curtain Grouting Efficiency Assessment Based on Prospect Theory and Interval-Valued Intuitionistic Fuzzy Sets Extended by Improved D Numbers

et al. 2019

View full text Add to dashboard Cite

show abstract

“…Both objective and subjective measures of risk provide useful information to aid decision making in vulnerability assessment [4,5]. Several different methods can be used to assess vulnerability and risk in a cyber-security system, such as vulnerability scanning tools [18] or the Common Vulnerability Scoring System (CVSS) [15], which gives qualitative severity ratings of low, medium, and high, and CVSS Version 3, which extends the ratings to include none and critical [8].…”

Section: Introductionmentioning

confidence: 99%

“…Between-expert uncertainty is often modelled implicitly, for example, through probability distributions [7] or uncertainty measures [5]. These methods model the between-expert uncertainty, but they do not capture within-expert uncertainty.…”

Section: Introductionmentioning

confidence: 99%

Exploring How Component Factors and Their Uncertainty Affect Judgements of Risk in Cyber-Security

Ellerby

McCulloch

Wilson

et al. 2019

Critical Information Infrastructures Security

View full text Add to dashboard Cite

Subjective judgements from experts provide essential information when assessing and modelling threats in respect to cyber-physical systems. For example, the vulnerability of individual system components can be described using multiple factors, such as complexity, technological maturity, and the availability of tools to aid an attack. Such information is useful for determining attack risk, but much of it is challenging to acquire automatically and instead must be collected through expert assessments. However, most experts inherently carry some degree of uncertainty in their assessments. For example, it is impossible to be certain precisely how many tools are available to aid an attack. Traditional methods of capturing subjective judgements through choices such as high, medium or low do not enable experts to quantify their uncertainty. However, it is important to measure the range of uncertainty surrounding responses in order to appropriately inform system vulnerability analysis. We use a recently introduced interval-valued response-format to capture uncertainty in experts' judgements and employ inferential statistical approaches to analyse the data. We identify key attributes that contribute to hop vulnerability in cyber-systems and demonstrate the value of capturing the uncertainty around these attributes. We find that this uncertainty is not only predictive of uncertainty in the overall vulnerability of a given system component, but also significantly informs ratings of overall component vulnerability itself. We propose that these methods and associated insights can be employed in real world situations, including vulnerability assessments of cyber-physical systems, which are becoming increasingly complex and integrated into society, making them particularly susceptible to uncertainty in assessment.

show abstract

“…D–S theory assigns probabilities to the power set of events [ 5 ], so it has advantages of dealing with uncertainty and unknown problems. In addition, it has wide applications, such as sensors’ network analysis [ 6 ], classification and clustering [ 7 , 8 , 9 ], decision-making [ 10 , 11 , 12 ], knowledge reasoning [ 13 , 14 ], risk assessment and evaluation [ 10 , 15 ], and others [ 9 , 11 , 16 , 17 , 18 ].…”

Section: Introductionmentioning

confidence: 99%

A New Belief Entropy to Measure Uncertainty of Basic Probability Assignments Based on Belief Function and Plausibility Function

Pan

Deng

2018

Entropy

View full text Add to dashboard Cite

How to measure the uncertainty of the basic probability assignment (BPA) function is an open issue in Dempster–Shafer (D–S) theory. The main work of this paper is to propose a new belief entropy, which is mainly used to measure the uncertainty of BPA. The proposed belief entropy is based on Deng entropy and probability interval consisting of lower and upper probabilities. In addition, under certain conditions, it can be transformed into Shannon entropy. Numerical examples are used to illustrate the efficiency of the new belief entropy in measurement uncertainty.

show abstract

A Novel Network Security Risk Assessment Approach by Combining Subjective and Objective Weights under Uncertainty

Cited by 12 publications

References 51 publications

A Comprehensive Evaluation Model for Curtain Grouting Efficiency Assessment Based on Prospect Theory and Interval-Valued Intuitionistic Fuzzy Sets Extended by Improved D Numbers

A Comprehensive Evaluation Model for Curtain Grouting Efficiency Assessment Based on Prospect Theory and Interval-Valued Intuitionistic Fuzzy Sets Extended by Improved D Numbers

Exploring How Component Factors and Their Uncertainty Affect Judgements of Risk in Cyber-Security

A New Belief Entropy to Measure Uncertainty of Basic Probability Assignments Based on Belief Function and Plausibility Function

Contact Info

Product

Resources

About