IDEAS home Printed from https://ideas.repec.org/a/gam/jsusta/v15y2023i10p8114-d1148503.html
   My bibliography  Save this article

Application of Multicriteria Methods for Improvement of Information Security Metrics

Author

Listed:
  • Aliya Abdiraman

    (Department of Information Security, Faculty of Information Technologies, L.N. Gumilyov Eurasian National University, KZ-010008 Astana, Kazakhstan)

  • Nikolaj Goranin

    (Department of Information Systems, Faculty of Fundamental Sciences, Vilnius Gediminas Technical University, LT-08412 Vilnius, Lithuania)

  • Simas Balevicius

    (Department of Information Systems, Faculty of Fundamental Sciences, Vilnius Gediminas Technical University, LT-08412 Vilnius, Lithuania)

  • Assel Nurusheva

    (Department of Information Security, Faculty of Information Technologies, L.N. Gumilyov Eurasian National University, KZ-010008 Astana, Kazakhstan)

  • Inga Tumasonienė

    (Department of Information Technologies, Faculty of Fundamental Sciences, Vilnius Gediminas Technical University, LT-08412 Vilnius, Lithuania)

Abstract

Metrics are a set of numbers that are used to obtain information about the operation of a process or system. In our case, metrics are used to assess the level of information security of information and communication infrastructure facilities. Metrics in the field of information security are used to quantify the possibility of damage due to unauthorized hacking of an information system, which make it possible to assess the cyber sustainability of the system. The purpose of the paper is to improve information security metrics using multicriteria decision–making methods (MCDM). This is achieved by proposing aggregated information security metrics and evaluating the effectiveness of their application. Classical information security metrics consist of one size or one variable. We obtained the total value by adding at least two different metrics and evaluating the weighting factors that determine their importance. This is what we call aggregated or multicriteria metrics of information security. Consequently, MCDM methods are applied to compile aggregated metrics of information security. These are derived from expert judgement and are proposed for the three management domains of the ISO/IEC 27001 information security standard. The proposed methods for improving cyber sustainability metrics are also relevant to information security metrics. Using AHP, WASPAS and Fuzzy TOPSIS methods to solve the problem, the weights of classical metrics are calculated and three aggregated metrics are proposed. As a result, to confirm the fulfilment of the task of improving information security metrics, a verification experiment is conducted, during which aggregated and classical information security metrics are compared. The experiment shows that the use of aggregated metrics can be a more convenient and faster process and higher intelligibility is also achieved.

Suggested Citation

  • Aliya Abdiraman & Nikolaj Goranin & Simas Balevicius & Assel Nurusheva & Inga Tumasonienė, 2023. "Application of Multicriteria Methods for Improvement of Information Security Metrics," Sustainability, MDPI, vol. 15(10), pages 1-34, May.
    • Handle: RePEc:gam:jsusta:v:15:y:2023:i:10:p:8114-:d:1148503
    as

    Download full text from publisher

    File URL: https://www.mdpi.com/2071-1050/15/10/8114/pdf
    Download Restriction: no
    File URL: https://www.mdpi.com/2071-1050/15/10/8114/
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. Diaz-Balteiro, L & González-Pachón, J. & Romero, C., 2017. "Measuring systems sustainability with multi-criteria methods: A critical review," European Journal of Operational Research, Elsevier, vol. 258(2), pages 607-616.
    2. Indre Siksnelyte-Butkiene & Edmundas Kazimieras Zavadskas & Dalia Streimikiene, 2020. "Multi-Criteria Decision-Making (MCDM) for the Assessment of Renewable Energy Technologies in a Household: A Review," Energies, MDPI, vol. 13(5), pages 1-22, March.
    3. Zenonas Turskis & Nikolaj Goranin & Assel Nurusheva & Seilkhan Boranbayev, 2019. "A Fuzzy WASPAS-Based Approach to Determine Critical Information Infrastructures of EU Sustainable Development," Sustainability, MDPI, vol. 11(2), pages 1-25, January.
    4. Edmundas Kazimieras Zavadskas & Abbas Mardani & Zenonas Turskis & Ahmad Jusoh & Khalil MD Nor, 2016. "Development of TOPSIS Method to Solve Complicated Decision-Making Problems — An Overview on Developments from 2000 to 2015," International Journal of Information Technology & Decision Making (IJITDM), World Scientific Publishing Co. Pte. Ltd., vol. 15(03), pages 645-682, May.
    Full references (including those not matched with items on IDEAS)

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Seyit Ali Erdogan & Jonas Šaparauskas & Zenonas Turskis, 2019. "A Multi-Criteria Decision-Making Model to Choose the Best Option for Sustainable Construction Management," Sustainability, MDPI, vol. 11(8), pages 1-19, April.
    2. Mónica de Castro-Pardo & Fernando Pérez-Rodríguez & José María Martín-Martín & João C. Azevedo, 2019. "Planning for Democracy in Protected Rural Areas: Application of a Voting Method in a Spanish-Portuguese Reserve," Land, MDPI, vol. 8(10), pages 1-17, October.
    3. Mónica de Castro-Pardo & Pascual Fernández Martínez & Amelia Pérez Zabaleta & João C. Azevedo, 2021. "Dealing with Water Conflicts: A Comprehensive Review of MCDM Approaches to Manage Freshwater Ecosystem Services," Land, MDPI, vol. 10(5), pages 1-32, April.
    4. Gigih Rahmandhani Setyantho & Hansaem Park & Seongju Chang, 2021. "Multi-Criteria Performance Assessment for Semi-Transparent Photovoltaic Windows in Different Climate Contexts," Sustainability, MDPI, vol. 13(4), pages 1-21, February.
    5. repec:eco:journ2:2017-04-06 is not listed on IDEAS
    6. Juan Carlos Martín & Carmen Orden-Cruz & Slimane Zergane, 2020. "Islamic Finance and Halal Tourism: An Unexplored Bridge for Smart Specialization," Sustainability, MDPI, vol. 12(14), pages 1-15, July.
    7. Yongli Wang & Xiangyi Zhou & Hao Liu & Xichang Chen & Zixin Yan & Dexin Li & Chang Liu & Jiarui Wang, 2023. "Evaluation of the Maturity of Urban Energy Internet Development Based on AHP-Entropy Weight Method and Improved TOPSIS," Energies, MDPI, vol. 16(13), pages 1-18, July.
    8. Sebastian Schär & Jutta Geldermann, 2021. "Adopting Multiactor Multicriteria Analysis for the Evaluation of Energy Scenarios," Sustainability, MDPI, vol. 13(5), pages 1-19, March.
    9. Dzido, Aleksandra & Krawczyk, Piotr & Wołowicz, Marcin & Badyda, Krzysztof, 2022. "Comparison of advanced air liquefaction systems in Liquid Air Energy Storage applications," Renewable Energy, Elsevier, vol. 184(C), pages 727-739.
    10. Ewa Roszkowska & Bartłomiej Jefmański, 2021. "Interval-Valued Intuitionistic Fuzzy Synthetic Measure (I-VIFSM) Based on Hellwig’s Approach in the Analysis of Survey Data," Mathematics, MDPI, vol. 9(3), pages 1-17, January.
    11. A. G. Olabi & Khaled Obaideen & Mohammad Ali Abdelkareem & Maryam Nooman AlMallahi & Nabila Shehata & Abdul Hai Alami & Ayman Mdallal & Asma Ali Murah Hassan & Enas Taha Sayed, 2023. "Wind Energy Contribution to the Sustainable Development Goals: Case Study on London Array," Sustainability, MDPI, vol. 15(5), pages 1-22, March.
    12. Jing Wang & Jian-Qiang Wang & Hong-Yu Zhang & Xiao-Hong Chen, 2017. "Distance-Based Multi-Criteria Group Decision-Making Approaches with Multi-Hesitant Fuzzy Linguistic Information," International Journal of Information Technology & Decision Making (IJITDM), World Scientific Publishing Co. Pte. Ltd., vol. 16(04), pages 1069-1099, July.
    13. Wanying Zhong & Yue Wang, 2022. "A study on the spatial and temporal variation of urban integrated vulnerability in Southwest China," Natural Hazards: Journal of the International Society for the Prevention and Mitigation of Natural Hazards, Springer;International Society for the Prevention and Mitigation of Natural Hazards, vol. 114(3), pages 2855-2882, December.
    14. Xu, Haoxin & Romagnoli, Alessandro & Sze, Jia Yin & Py, Xavier, 2017. "Application of material assessment methodology in latent heat thermal energy storage for waste heat recovery," Applied Energy, Elsevier, vol. 187(C), pages 281-290.
    15. Dianfa Wu & Zhiping Yang & Ningling Wang & Chengzhou Li & Yongping Yang, 2018. "An Integrated Multi-Criteria Decision Making Model and AHP Weighting Uncertainty Analysis for Sustainability Assessment of Coal-Fired Power Units," Sustainability, MDPI, vol. 10(6), pages 1-27, May.
    16. Javed, Muhammad Shahzad & Ma, Tao & Jurasz, Jakub & Mikulik, Jerzy, 2021. "A hybrid method for scenario-based techno-economic-environmental analysis of off-grid renewable energy systems," Renewable and Sustainable Energy Reviews, Elsevier, vol. 139(C).
    17. Angela Dikou, 2024. "Competence in Unsustainability Resolution—A New Paradigm," Sustainability, MDPI, vol. 16(18), pages 1-20, September.
    18. Bartłomiej Kizielewicz & Jarosław Wątróbski & Wojciech Sałabun, 2020. "Identification of Relevant Criteria Set in the MCDA Process—Wind Farm Location Case Study," Energies, MDPI, vol. 13(24), pages 1-40, December.
    19. Janová, Jitka & Hampel, David & Nerudová, Danuše, 2019. "Design and validation of a tax sustainability index," European Journal of Operational Research, Elsevier, vol. 278(3), pages 916-926.
    20. Yun Jin & Hecheng Wu & Dechao Sun & Shouzhen Zeng & Dandan Luo & Bo Peng, 2019. "A Multi-Attribute Pearson’s Picture Fuzzy Correlation-Based Decision-Making Method," Mathematics, MDPI, vol. 7(10), pages 1-12, October.
    21. Lucas, Rochelle Irene & Promentilla, Michael Angelo & Ubando, Aristotle & Tan, Raymond Girard & Aviso, Kathleen & Yu, Krista Danielle, 2017. "An AHP-based evaluation method for teacher training workshop on information and communication technology," Evaluation and Program Planning, Elsevier, vol. 63(C), pages 93-100.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:gam:jsusta:v:15:y:2023:i:10:p:8114-:d:1148503. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: MDPI Indexing Manager (email available below). General contact details of provider: https://www.mdpi.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.