决策信息风险

危机决策中的信息风险分析及控制研究

Research on Risk Analysis and Control of Information in Crisis Decision-making

该方法采用三角模糊数来表示基于群组决策的信息安全风险各因素的判断矩阵，并用层次分析法来对专家判断结果进行处理，为决策提供了更合理的数据。

This method adopts the triangular fuzzy number to represent the experts ' judgment matrix of risk factors based on group decision , and uses AHP to handle these risk factors , thus provides reasonable data for decision-making .

企业风险模型（BRM）将风险归纳为三个大类，73种常见风险。包括了，环境风险、流程实施风险和决策所使用的信息风险。

Business risk models ( BRM ) divides risks into three categories , 73 usual risks , including environmental risks , process implement risks and information risks in decision making .

该模型考虑安全要素间的相互关系和相对重要度，将资产、威胁和弱点三部分紧密相连，根据模型所计算的信息安全风险值可直接作为企业决策者关于信息安全风险投资决策的依据。

Security elements of the model need to consider the interrelationship and relative importance , which will be the assets , threats and weaknesses of three closely linked parts .