Abstract:
Complex information systems (in particular, Internet of Things systems) are characterized by various types of uncertainty. Among them, one can distinguish the uncertainty of the values of individual factors for assessing the state of the system as a whole, the uncertainty of the mutual influence of system elements on each other, as well as the uncertainty of the dependence of the risk of the system as a whole on the values of local risks — as characteristic of this class of systems. The existing methods of assessing information risks of complex systems do not take into account the listed types of uncertainty at the same time. At the same time, since uncertainty is the reason for the deviation of the system from the target mode of operation, the need to take into account at least its main types when assessing risks is obvious. The proposed article contains a brief overview of existing approaches to risk assessment of information systems, as well as an analysis of the possibility of taking into account the above types of uncertainty within each of them. Based on the results of the analysis, the integrated assessment method was chosen as a promising one, originally developed for the mechanism of integrated assessment of organizational systems, and in recent years it has been increasingly used for risk assessment, including in information systems.
Keywords:complex information systems, integral risk, complex assessment, accounting for uncertainty.
Fulltext:
PDF file (755 kB)