An Assessment Model For Information System’s Risk Based On Entropy Method And Grey Theory

In the process of risk assessment of information system, the risk assessment method and model are the key point. This paper analyzes the risk assessment methods of the information system, and points out the limitations of some methods. Considering the grey and dynamic characteristics of the evaluation index, the evaluation model based on Entropy Method and Grey Theory is presented, and the validity of the method is demonstrated by an example

Fuzzy-GRA trust model for cloud risk management

Cloud computing is not adequately secure due to the currently used traditional trust methods such as global trust model and local trust model. These are prone to security vulnerabilities. This paper introduces a trust model based on the fuzzy mathematics and gray relational theory. Fuzzy mathematics and gray relational analysis (Fuzzy-GRA) aims to improve the poor dynamic adaptability of cloud computing. Fuzzy-GRA platform is used to test and validate the behavior of the model. Furthermore, our proposed model is compared to other known models. Based on the experimental results, we prove that our model has the edge over other existing models

On Evidence-based Risk Management in Requirements Engineering

Background: The sensitivity of Requirements Engineering (RE) to the context makes it difficult to efficiently control problems therein, thus, hampering an effective risk management devoted to allow for early corrective or even preventive measures. Problem: There is still little empirical knowledge about context-specific RE phenomena which would be necessary for an effective context- sensitive risk management in RE. Goal: We propose and validate an evidence-based approach to assess risks in RE using cross-company data about problems, causes and effects. Research Method: We use survey data from 228 companies and build a probabilistic network that supports the forecast of context-specific RE phenomena. We implement this approach using spreadsheets to support a light-weight risk assessment. Results: Our results from an initial validation in 6 companies strengthen our confidence that the approach increases the awareness for individual risk factors in RE, and the feedback further allows for disseminating our approach into practice.Comment: 20 pages, submitted to 10th Software Quality Days conference, 201

Analysis of Decision Support Systems of Industrial Relevance: Application Potential of Fuzzy and Grey Set Theories

The present work articulates few case empirical studies on decision making in industrial context. Development of variety of Decision Support System (DSS) under uncertainty and vague information is attempted herein. The study emphases on five important decision making domains where effective decision making may surely enhance overall performance of the organization. The focused territories of this work are i) robot selection, ii) g-resilient supplier selection, iii) third party logistics (3PL) service provider selection, iv) assessment of supply chain’s g-resilient index and v) risk assessment in e-commerce exercises. Firstly, decision support systems in relation to robot selection are conceptualized through adaptation to fuzzy set theory in integration with TODIM and PROMETHEE approach, Grey set theory is also found useful in this regard; and is combined with TODIM approach to identify the best robot alternative. In this work, an attempt is also made to tackle subjective (qualitative) and objective (quantitative) evaluation information simultaneously, towards effective decision making. Supplier selection is a key strategic concern for the large-scale organizations. In view of this, a novel decision support framework is proposed to address g-resilient (green and resilient) supplier selection issues. Green capability of suppliers’ ensures the pollution free operation; while, resiliency deals with unexpected system disruptions. A comparative analysis of the results is also carried out by applying well-known decision making approaches like Fuzzy- TOPSIS and Fuzzy-VIKOR. In relation to 3PL service provider selection, this dissertation proposes a novel ‘Dominance- Based’ model in combination with grey set theory to deal with 3PL provider selection, considering linguistic preferences of the Decision-Makers (DMs). An empirical case study is articulated to demonstrate application potential of the proposed model. The results, obtained thereof, have been compared to that of grey-TOPSIS approach. Another part of this dissertation is to provide an integrated framework in order to assess gresilient (ecosilient) performance of the supply chain of a case automotive company. The overall g-resilient supply chain performance is determined by computing a unique ecosilient (g-resilient) index. The concepts of Fuzzy Performance Importance Index (FPII) along with Degree of Similarity (DOS) (obtained from fuzzy set theory) are applied to rank different gresilient criteria in accordance to their current status of performance. The study is further extended to analyze, and thereby, to mitigate various risk factors (risk sources) involved in e-commerce exercises. A total forty eight major e-commerce risks are recognized and evaluated in a decision making perspective by utilizing the knowledge acquired from the fuzzy set theory. Risk is evaluated as a product of two risk quantifying parameters viz. (i) Likelihood of occurrence and, (ii) Impact. Aforesaid two risk quantifying parameters are assessed in a subjective manner (linguistic human judgment), rather than exploring probabilistic approach of risk analysis. The ‘crisp risk extent’ corresponding to various risk factors are figured out through the proposed fuzzy risk analysis approach. The risk factor possessing high ‘crisp risk extent’ score is said be more critical for the current problem context (toward e-commerce success). Risks are now categorized into different levels of severity (adverse consequences) (i.e. negligible, minor, marginal, critical and catastrophic). Amongst forty eight risk sources, top five risk sources which are supposed to adversely affect the company’s e-commerce performance are recognized through such categorization. The overall risk extent is determined by aggregating individual risks (under ‘critical’ level of severity) using Fuzzy Inference System (FIS). Interpretive Structural Modeling (ISM) is then used to obtain structural relationship amongst aforementioned five risk sources. An appropriate action requirement plan is also suggested, to control and minimize risks associated with e-commerce exercises

Digitizing grey portions of e-governance

Purpose: The purpose of this research paper is to assess e-governance efficacy in various sectors of India. The paper develops on Grey System Theory (GST) methodology and enlightens grey portions of e-governance in select sectors. Research study identifies few grey criteria which affect implementation of information and communication technology (ICT) applications to support sustainable e-governance. Such criteria are related to information security breaches, information technology (IT) policy implementation, investments and strategic advantages for the various sector developments. Design/methodology/approach: Considering “information” as a sensitive element to security for administration and part of dark portion to Indian economy, GST-based COmplex PRroportional ASsessment (COPRAS-G) method is adopted to assess the e-governance efficacy. The method provides flexible multicriteria decision-making (MCDM) approach to assess e-governance in prioritizing the sector alternatives of future strategic development. Priority order of select sectors is estimated, and COPRAS-G method is used in the research study to support decision-making on e-governance. Study compares ten major gross domestic product-dependent sectors based on few grey criteria. These criteria are chosen based on authors’ perspective on this study and feedback received from government officials of district levels under the Digital India-training programme. To address the subjectivity that lies in e-governance grey areas of sector, criteria are also weighted using fuzzy scale. Later methodology-based results are presented to draw a strategic road map for strategic development of the country. Findings: On applying COPRAS-G method to predict pessimistic, optimistic and realistic scenarios of e-governance implementation across the ten sectors, high priory order in realistic scenario of results shows that implementation of ICT applications for e-governance should be in the sectors such as environment, climate change and in the railways. Industrial sector is also ranked as the preferred one over the other sectors on the basis of e-governance efficacy assessment. Research limitations/implications: Here COPRAS-G method is used as MCDM techniques. However, few other MCDM techniques such as GRA, DRSA, VIKOR, SMAA, SWARA and SAW can be also explored to outrank various Indian sectors to deal with subjectivity in decision-making. Practical implications: Implementation of ICT applications to support e-governance varies from sector to sector. ICT-based governance involves high degree of complexity in driving the operations for development of respective sectors. Therefore, government and policymakers need more flexibility to overcome present barriers of sector development. Such research can support decision-making where GST-based COPRAS-G method is able to capture and address the breaches of information security. Moreover, management concern for sector development has been presented on the basis of pessimistic, optimistic and realistic scenarios more precisely. Social implications: The results can provide guidance to the academicians, policymakers and public sectors highlighting various possible measures to handle the security breaches in multi-facet intention of sustainable development. The outcomes from MCDM framework can also help in drawing a rough trajectory of strategy, i.e. development of ICTs applications and e-governance process. Originality/value: This paper can supplement and act as the support for decision-making in conflicting situations on different flexible scenarios. Moreover, such work can synergize conflicting ideas of decision makers, academics and various other stakeholders of the Indian IT sector

Data Challenges and Data Analytics Solutions for Power Systems

L'abstract è presente nell'allegato / the abstract is in the attachmen