Fuzzy Comprehensive Risk Assessment Method Based on Consistent Matrix and Information Entropy

ABSTRACT

To solve the following problems of information security risk assessment method: inconsistency of judgment matrix, and irrationality of expert weight, risk assessment method based on the consistent matrix and information entropy (RAMCI) is proposed, which uses the priority relationship matrix to establish consistent judgment matrix and information entropy to calculate the weight of multiple experts with an indicator score. This method was used in a case to assess the risk. The results show that: in comparison with previous assessment methods, RAMCI has the following advantages: consistency of judgment matrix not concerned; objectively reflects the statistical profile of individual risk factors. So RAMCI is a practical information system risk assessment method.

Keywords: