中大機構典藏-NCU Institutional Repository-提供博碩士論文、考古題、期刊論文、研究計畫等下載:Item 987654321/89004
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 80990/80990 (100%)
Visitors : 42716878      Online Users : 1537
RC Version 7.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: http://ir.lib.ncu.edu.tw/handle/987654321/89004


    Title: 結合FAIR與NIST資安框架分析資安風險:以金融業為例
    Authors: 曾立行;Tseng, Li-Hsing
    Contributors: 土木工程學系
    Keywords: 網路風險;資安風險;保費計算;FAIR;NIST;cyber security;cyber insurance;data breach;FAIR;NIST
    Date: 2022-08-18
    Issue Date: 2022-10-04 10:47:28 (UTC+8)
    Publisher: 國立中央大學
    Abstract: 近年來,全球受新冠肺炎(COVID-19)疫情持續影響,如今早已改變人們原本生活的面貌,同時全球經濟、產業型態帶來非常大的變化,然而此迅速變化也讓許多產業尋求智慧及數位化生產,以減低疫情所帶來的影響,此結果不僅使高科技及數位化產業之發展,也導致生活型態之轉變,遠距工作比例增加,更帶來相應之資安風險,若管理不當可能會對組織的營運造成很深的影響並會帶來相當大的金錢損失。即使解決漏洞本身的問題後,將來也非常有可能造成長久且深遠的後續影響,甚至將影響組織名譽及品牌的形象。
    本研究介紹網路風險之構成及所需參數,進而透過FAIR(factor analysis of information risk)與NIST (National Institute of Standards and Technology)資安框架探討台灣之金融產業其攻擊類型、損失大小等等,最後透過python模擬其保費計算。
    ;In recent years, the world has been continuously affected by the new crown pneumonia (COVID-19) epidemic, which has already changed people′s original life. At the same time, the global economy and industrial patterns have brought great changes. However, this impact has also caused many industries to seek intelligent and digital production, trying to reduce the impact of the epidemic, not only unexpectedly accelerate the development of high-tech industries and digital industries, but also lead to changes in lifestyles, increasing the proportion of remote work, and bring corresponding information security risks. Improper management can severely impact an organization′s reputation to operate and result in considerable monetary losses. Even after solving the problem of the vulnerability itself, it may cause long-term and far-reaching follow-up effects, affecting the organization′s goodwill and brand image.
    This research introduces the composition and required parameters of network risk, and then discusses the types of attacks and the size of losses in Taiwan′s financial industry through FAIR (factor analysis of information risk) and NIST (National Institute of Standards and Technology) information security frameworks. Finally, assesses its premium calculation through a software developed using Python.
    Appears in Collections:[Graduate Institute of Civil Engineering] Electronic Thesis & Dissertation

    Files in This Item:

    File Description SizeFormat
    index.html0KbHTML38View/Open


    All items in NCUIR are protected by copyright, with all rights reserved.

    社群 sharing

    ::: Copyright National Central University. | 國立中央大學圖書館版權所有 | 收藏本站 | 設為首頁 | 最佳瀏覽畫面: 1024*768 | 建站日期:8-24-2009 :::
    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - 隱私權政策聲明