Output details
13 - Electrical and Electronic Engineering, Metallurgy and Materials
University of Plymouth
Incident prioritisation using analytic hierarchy process (AHP): Risk Index Model (RIM)
A challenge for computer security systems is determining which incidents warrant the most urgent attention. The Risk Index Model is proposed, which enables better prioritisation than other known systems, using criticality and other indicators. It successfully rates 100% of incidents, according to experimental results (using Snort intrusion detection system data), outperforming the 17.23% achieved when using the Common Vulnerability Scoring System. Prioritisation experiments show significant benefits, with important incidents given top-priority. The model offers strong potential to inform future incident response, and is driving collaboration with University of Malaya where the original researcher is now based.