吴小刚,李洵,张土乔,陈旭昱

DOI: https://doi.org/10.16265/j.cnki.issn1003-3033.2004.08.014

2004-01-01

Abstract:The responsibilities and functions in project safety risk management for designers and contractors are discussed. Generally the process of risk management is divided into three stages: the risk identification, evaluation, and decision making. The former two are mainly the designer's responsibility, for which a model of sub-system risk management approach is put forward. The model is exemplified and analyzed with real cases. The feasibility in risk identification and evaluation period is proved. The evaluation criteria of occurrence probability of unexpected events and severity of outcomes are rationally set up in evaluation method, which provide the scientific basis in risk evaluation of the construction safety.

WANG Qiu-zhen

DOI: https://doi.org/10.3969/j.issn.1007-7634.2005.09.025

2005-01-01

Abstract:The failure rate of information systems(IS) development projects is high .Most IS projects can't be completed on time,within budget,and meet users'needs.From the view that the process of system development is a socio-technical system,this paper systematicly analyzes the common risk factors of information systems development projects based on the socio-technical model of organizational change,which helps IS project managers to identify and control project risks effectively.

Shi Jian,Guo Shanqing,Xie Li

DOI: https://doi.org/10.3321/j.issn:1002-8331.2006.01.034

2006-01-01

Abstract:Risk assessment is critical to establishing an effective Information Security Management System and it is the foundation of information system security systematism.After introducing information security risk assessment briefly,this paper provides a real-time risk assessment method using qualitative and quantitative assessment synthetically.By analyzing the assets,vulnerabilities and threats of information system,this method can evaluate the risk of the system in real time with the events produced by security devices.

CHEN Wei-hua,JIANG Quan-yuan,CAO Yi-jia,HAN Zhen-xiang

DOI: https://doi.org/10.3321/j.issn:1000-3673.2005.04.004

2005-01-01

Abstract:Based on probability theory the risk theory was applied to the vulnerability assessment of power system. Here, the power system was defined as a vulnerable system and a set of risk indices to assess the power system vulnerability and corresponding algorithm were built, thus the defects of traditional determinsistic security assessment method, which cannot satisfy the requirement of electricity market and complicated power grid, could be overcome. On this basis, a risk theory and risk indices based power system vulnerability assessment software was developed. Taking the New England test system for example, the effectiveness and advanced property of the presented method were proved.

DING Li-jie,CHEN Wei-hua,BAO Zhe-jing

2009-01-01

Abstract:To ensure the static security of the power system,which is one of the key factors in power system operation,a method of risk assessment and preventive control was proposed based on the risk of line overload and voltage exceeding.In this method,the probabilistic power flow(PPT) and cumulant method were used to analyze the randomness of system statuses,and the severity function was applied to describing the impact and outcome of line overhead and voltage exceeding.Moreover,the product of probability and severity of line overload and voltage exceeding was defined as the risk index of the system.Finally,a preventive control model for static security,based on optimal power flow and particle swarm optimization method,was developed and used to optimize the outputs of the system active and reactive resources,which reduced the risks of overload and voltage exceeding and increased system security.The method was proved effective through testing.

LIU Sen-sen,CHEN Wei-hua,JIANG Quan-yuan

DOI: https://doi.org/10.3785/j.issn.1008-973x.2009.03.036

2009-01-01

Abstract:The risk theory was applied to static security analysis of power system,and a power system risk model with obvious parallel processing was built.A novel parallel processing approach of risk assessment of power system was presented based on the parallel model.The approach was implemented by PC cluster.In the implementation of specific parallel computing,the PC cluster technology was used.The New England 10-machine 39-node system was used to verify power system static security risk assessment methodology based on parallel computing.System's N-1 breaking accidents were used as the system's expected accident set.The risk of line power overload and that of bus low voltage were used as the two risk indicators to describe static security.The performance of parallel computing algorithm based on indicators and that of parallel computing algorithm based on static incidents allocation were compared.

Zhi-wen WANG,Zhi-huan SONG

DOI: https://doi.org/10.3969/j.issn.1009-6094.2010.01.048

2010-01-01

Applied Mechanics and Materials

Abstract:To improve the objectivity and comprehensiveness of the safety assessments of the thermal power plant, a renovated method of safety assessment for thermal power plants has been proposed here in this paper based on the three dimensions: the maximum limits, the minimum limits and the restrictions on the middle region, as well as the data envelopment analysis (DEA) module. As each indicator can then be subdivided into some sub-indicators, the potential safety degree can be guaranteed by using scores evaluated by the specialists. Thus, the three-dimensional original data can then be uniformly processed into intervals [0,1], in which weight-related indicators relate to the safety parameters so that the potential safety can be determined by the analytic hierarchical parameters. The final results of the safety assessment can thus be denoted by four evaluation grades: the danger grade, slight danger grade, the slight safety and full safety grades by using the graded fuzzy membership functions. The method here mentioned takes full advantage of the power plants' existant quantitative indicators and non-quantifiable indicators by using real-time operating parameters of the equipment installations and human experience, all of which can form a comprehensive organic system to make the evaluation results both comprehensive and objective. The distinguished features of such an evaluation method lies in that it provides a new research idea for safety evaluation both of the objective data and subjective factors organically so that it can serve as a good reference to the other safety assessments of complex systems. And, finally, an example has been given to demonstrate the way on how to use the three-dimensional computational procedure. Thus, it can be concluded that the safety assessment method is fully feasible for the target it is aimed at.

Chao Zhang,Yi Liu

2007-01-01

Abstract:The study of risk assessment of dangerous chemicalss has attracted much attention in recent years. In this paper, a new method of risk assessment is developed. Besides the inherent risk, the accident derivation possibility that may be caused by the primary accident is considered together with the effect of emergency rescue action which may reduce the risk. The analytic hierarchy process (AHP) is applied in this research. The factors and the weights are specified with dozens of case analysis. The risk assessment results show good agreement with the real cases. It is also found that the effect of emergency rescue action is very important in risk assessment and should not be ignored.

Qilei Wang

DOI: https://doi.org/10.1038/s41598-022-08079-2

IF: 4.6

2022-03-08

Scientific Reports

Abstract:Abstract In order to effectively assess all types of security risks in the important event, the important decision-making basis for security risk warning and emergency management of important event is provided by analyzing the coupling relationship and evolution mechanism between various risks. The criminal causes, management defects, security and emergency system construction are analyzed from the possibility of accidents and risks. The multi-source data risk assessment system based on five subsystems and its index set of human factors, management factors, site factors, event factors and audit factors are proposed. The weight of each index in the assessment system is determined by the method of information entropy, and then the risk grade of important event is determined according to the weight calculation function and the improved fuzzy matter element model. The verification with an example shows that: the risk assessment model is optimized by combining entropy weight with fuzzy matter-element model, the influence of weight data extreme value was weakened, the qualitative description and quantitative analysis of multi-source data could be combined, and the subjective error was reduced. The risk grade of important event is reasonably evaluated, and the assessment effect is basically consistent with the expert inspection analysis, which shows that the method had certain application value.

multidisciplinary sciences

Liu Yi,Liu Zheng,Chen Jianguo,Chen Lin

2010-01-01

Abstract:A risk assessment method is developed with uncertainty analysis for fire safety. Three aspects of fire risk were considered which are "the fire evolution", "human's vulnerability" and "management level". Each aspect is set as an uncertain variable and the uncertainty distribution is got with statistics. The integrated risk with three uncertain variables is modeled with vector method. Validating of the model is performed with three practical markets, which indicates that the risk assessment results fit well with practical situation. Besides, the method developed in this paper helps to find the key factors of risk.

Luo Cong,Yunsheng Zhao,Ke Xu

DOI: https://doi.org/10.1016/j.cjche.2023.12.014

IF: 3.8

2024-01-01

Chinese Journal of Chemical Engineering

Abstract:The technological revolution has spawned a new generation of industrial systems, but it has also put forward higher requirements for safety management accuracy, timeliness, and systematicness. Risk assessment needs to evolve to address the existing and future challenges by considering the new demands and advancements in safety management. The study aims to propose a systematic and comprehensive risk assessment method to meet the needs of process system safety management. The methodology first incorporates possibility, severity, and dynamicity (PSD) to structure the “51X” evaluation indicator system, including the inherent, management, and disturbance risk factors. Subsequently, the four-tier (risk point-unit-enterprise-region) risk assessment (RA) mathematical model has been established to consider supervision needs. And in final, the application of the PSD-RA method in ammonia refrigeration workshop cases and safety risk monitoring systems is presented to illustrate the feasibility and effectiveness of the proposed PSD-RA method in safety management. The findings show that the PSD-RA method can be well integrated with the needs of safety work informatization, which is also helpful for implementing the enterprise’s safety work responsibility and the government’s safety supervision responsibility.

engineering, chemical

Yu Zhiwei,Tang Rengzhong,Jia Dongjiao,Ye Fanbo

DOI: https://doi.org/10.3321/j.issn:1004-132X.2007.04.021

2007-01-01

Abstract:To identify the security requirements of information systems, a business process-based security requirement analysis method was presented. Focused on the business process security, the related assets which affect the business process security were identified by security tree model. The security requirements of assets were identified by risk packet and risk transferring model, and then the security requirements list was formed after coverage analysis. Finally, a case was studied to illustrate the proposed method.

LIU Bao-Li,XIAO Xiao-Chun,ZHANG Gen-Du

DOI: https://doi.org/10.3969/j.issn.1002-137X.2006.12.016

2006-01-01

Computer Science

Abstract:Vulnerability assessment is an important aspect of information system security risk assessment process. Combined with AHP(Analytic Hierarchy Process), we provide a quantitative vulnerability assessment method of information system.

刘新东,江全元,曹一家,陈为化

DOI: https://doi.org/10.3969/j.issn.1006-6047.2009.02.004

2009-01-01

Abstract:Based on probability theory,risk theory and fuzzy reasoning are applied to the transient security risk assessment of power system.Quantified risk indices are achieved by using specified severity function to quantify the maximal offsets of frequency and voltage and the margins of angle rotor stability and fault clearing time.The quantified frequency and voltage risk index are used to calculate the steady index by the steady fuzzy controller while the quantified margins of angle rotor stability and fault clearing time are used to calculate the transient index by the transient fuzzy controller.The system transient stability index is calculated by the weighted integration of steady index and transient index.Based on it,the software of transient security risk assessment is developed.Case study of risk indices calculation for a permanent three-phase grounding fault of New England 39-bus test system shows its effectiveness and rationality.

Guohua Chen,Qin Yang,Xuexi Chen,Kongxing Huang,Tao Zeng,Zhi Yuan

DOI: https://doi.org/10.3390/su13126560

IF: 3.9

2021-06-08

Sustainability

Abstract:With the expansion of urbanization, the interaction between different hazards has become increasing evident. In order to promote sustainable development of urban areas, it is particularly important to systematically analyze and evaluate urban safety and security under the coupling effect of multi-hazard risks. In response to the practical needs of urban safety and security assessment practice, this paper constructs an application-oriented urban safety and security quantitative assessment methodology. First, following the comprehensive risk management perspective, the logical relationship between urban safety and security elements is analyzed. It proposes “comprehensive screening, key analysis, and comprehensive evaluation” as a new assessment concept. Second, a system of urban safety and security assessment methods consisting of a weighting method and a function model is constructed. The function model includes two sub-models: a quantitative risk assessment model that considers triggering effects and a quantitative assessment model of emergency capacity that considers the evolution of emergencies. Finally, the method was applied to a coastal urban area in south China. The case study proved that the proposed method system can not only effectively evaluate various disaster risks and emergency capacity but also provide evidence for the formulation and implementation of urban safety and security management measures.

environmental sciences,environmental studies,green & sustainable science & technology

Huifeng Li,Tiecheng Li,Qigui Yao,Weixun Li,Libo Yang,Guanghui Sun

DOI: https://doi.org/10.1088/1742-6596/2137/1/012023

2021-01-01

Journal of Physics Conference Series

Abstract:The security threat of power monitoring system is increasing, it is valuable to carry out effective risk assessment, which helps to find the security threats of the system in time, then carry out security management and avoid disasters. This paper presents a risk assessment method of power monitoring system based on Fuzzy Analytic Hierarchy Process (FAHP) and CVSS. Firstly, Considering the structure and security requirements of power monitoring system, the analytic hierarchy process (AHP) model is established, and CVSS is used to quantify the evaluation indicators. Then, the fuzzy consistent judgment matrix is constructed by using the results of index quantification by using AHP and fuzzy comprehensive evaluation theory, and the power monitoring system is comprehensively evaluated from the bottom to the top. Finally, the risk evaluation value and safety level of the system are obtained. The example shows that the method can effectively overcome the difficulty of AHP in checking the consistency of judgment matrix, and can effectively quantify the system risk, and provide reference and basis for risk management decision-making of power monitoring system.

Zhongmin Cai,Chenglong Li

DOI: https://doi.org/10.1155/2022/9023904

IF: 1.43

2022-05-18

Mathematical Problems in Engineering

Abstract:With the rapid development of modern society, the administrative information content rapid growth of e-government information resource sharing becomes the key of the government departments for effective social management. The cloud technology Internet big data are widely used and popular, which enable information resources to be shared among government data and are both an opportunity and challenge for effective e-government information resource sharing. It is of great significance to enhance government credibility. Information security risk assessment is a comprehensive evaluation of the potential risk of an uncertain stochastic process, traditional evaluation methods are deterministic models, and it is difficult to measure the security risk of uncertainty. On the other hand, with the opening and complexity of information system business functions, the nonlinearity and complexity of evaluation calculation also increase. By studying the relatively mature assessment criteria and methods in the field of information security, this study analyzes the information security status of small Internet of Things system based on the characteristics of Internet of Things information security. Combining the latest research results of information entropy neural network and other fields with the original risk assessment methods, the improved AHP information security risk assessment model is verified by simulation examples.

engineering, multidisciplinary,mathematics, interdisciplinary applications

XiaoLin Cui,Xiaobin Tan,Yong Zhang,Hongsheng Xi

DOI: https://doi.org/10.1109/CSSE.2008.949

2008-01-01

Abstract:Risk assessment is a very important tool to acquire a present and future security status of the network information system. Many risk assessment approaches consider the present system security status, while the future security status, which also has an impact on assessing the system risk, is not taken into consideration. In this paper we propose a novel risk assessment model based on Markov game theory. In this model, all of the possible risk in the future will impact on the present risk assessment. The farther away from now, the smaller impact on the risk assessment it has. After acquiring the system security status, we proposed an automatic generated reinforcement scheme which will provide a great convenience to the system administrator. A software tool is developed to demonstrate the performance of the risk assessment of a network information system and a simulation example shows the effectiveness of the proposed model. © 2008 IEEE.

Yiyang Jia,Hanyan Wu,Dongxing Jiang

DOI: https://doi.org/10.1109/CyberC.2015.47

2015-01-01

Abstract:Security situation assessment is an effective way to analyze the situation of an information system, which helps administrator understand the current system risk status and make policy to response in time. However, the existing researches for security situation assessment mostly focus on network. The proposed methods for network are not so suitable for information systems. This paper proposes a hierarchical security situation analysis framework for information system, based on a classical NSSA [1] (network security situation analysis) model. The framework provides a standard flow for analyzing the security situation of information system. It consists a security situation analysis model of information system, an index system used in the model proposed, and a quantitative index fusion method to calculate a security situational value. We divided information system into 3 levels: sub-system level, composition level and index level. The collected information from the index level can be combined with grey model to determine the correlation degree between each major index and secondary index. Finally we calculate the whole system security situational value level by level. We use data from Tsinghua University information system to verify the proposed model and method. The result shows that this model can reflect the current security situation of information system comprehensively.

Chen,Gang Chen

DOI: https://doi.org/10.1109/aiipcc57291.2022.00077

2022-01-01

Abstract:With the rapid development and popular utilization of computer network system, the proportion of attacks against computer network system has been increasing year by year. The traditional security vulnerability assessment method only evaluates individual vulnerabilities in isolation, and the assessment results do not reflect the degree of impact of vulnerabilities on the whole network. To address this problem this paper proposes a computer network system security assessment method, which uses the CVSSv3 evaluation index to assess vulnerabilities based on vulnerability association graph and risk matrix, while taking into account the association relationship between the fore-order vulnerability nodes, back-order vulnerability nodes and the vulnerability itself. The vulnerability correlation hazard calculated by the method can accurately reflect the degree of impact of the vulnerability on the whole computer network system, and the accuracy and effectiveness of the method is proved through experiments.