Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang
Risk analysis is the best method for every organization to secure their business environment from any undesired hazardous events such as malicious code attack or natural disaster that could cause a lot of loses and impairs business operation. Risk analysis is very important and necessary because the...
Saved in:
Main Author: | |
---|---|
Format: | Thesis |
Language: | English |
Published: |
2008
|
Subjects: | |
Online Access: | http://eprints.utm.my/id/eprint/9507/1/NazroolOmarMFC2008.pdf |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
id |
my-utm-ep.9507 |
---|---|
record_format |
uketd_dc |
institution |
Universiti Teknologi Malaysia |
collection |
UTM Institutional Repository |
language |
English |
topic |
QA76 Computer software |
spellingShingle |
QA76 Computer software Omar, Nazrool Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
description |
Risk analysis is the best method for every organization to secure their business environment from any undesired hazardous events such as malicious code attack or natural disaster that could cause a lot of loses and impairs business operation. Risk analysis is very important and necessary because the probability of a disaster occurring in an organization is highly uncertain. Hence, the prediction through analysis process is mandatory. Selecting methodology for information security risk analysis is crucial. This project analysis will follow ISO/IEC 27005 Information Security Risk Management Standard. This standard has been widely used as baseline or references by many commercial risk analysis tool developers. The risk analysis is carried out on Pictures Archiving and Communication System (PACS) of Hospital Selayang. The analysis attempts to identify and list the risks that might shut down the system operation and subsequently presented in Dynamic Fault Tree (DFT) as a dynamic model. Dynamic Fault Tree is a method that extends standard fault trees by allowing the modeling of system risks behaviors and interactions with each other over a period of time. At the end of the project risks register will be produced in the form of report. The risk report will benefit Hospital Selayang during overall risk assessment of the Pictures Archiving and Communication System (PACS). |
format |
Thesis |
qualification_level |
Master's degree |
author |
Omar, Nazrool |
author_facet |
Omar, Nazrool |
author_sort |
Omar, Nazrool |
title |
Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
title_short |
Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
title_full |
Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
title_fullStr |
Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
title_full_unstemmed |
Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang |
title_sort |
dynamic model for risk analysis of picture archiving communication system (pacs) at hospital selayang |
granting_institution |
Universiti Teknologi Malaysia, Faculty of Computer Science and Information System |
granting_department |
Faculty of Computer Science and Information System |
publishDate |
2008 |
url |
http://eprints.utm.my/id/eprint/9507/1/NazroolOmarMFC2008.pdf |
_version_ |
1747814742591799296 |
spelling |
my-utm-ep.95072018-10-14T07:19:55Z Dynamic model for risk analysis of picture archiving communication system (PACS) at Hospital Selayang 2008-11 Omar, Nazrool QA76 Computer software Risk analysis is the best method for every organization to secure their business environment from any undesired hazardous events such as malicious code attack or natural disaster that could cause a lot of loses and impairs business operation. Risk analysis is very important and necessary because the probability of a disaster occurring in an organization is highly uncertain. Hence, the prediction through analysis process is mandatory. Selecting methodology for information security risk analysis is crucial. This project analysis will follow ISO/IEC 27005 Information Security Risk Management Standard. This standard has been widely used as baseline or references by many commercial risk analysis tool developers. The risk analysis is carried out on Pictures Archiving and Communication System (PACS) of Hospital Selayang. The analysis attempts to identify and list the risks that might shut down the system operation and subsequently presented in Dynamic Fault Tree (DFT) as a dynamic model. Dynamic Fault Tree is a method that extends standard fault trees by allowing the modeling of system risks behaviors and interactions with each other over a period of time. At the end of the project risks register will be produced in the form of report. The risk report will benefit Hospital Selayang during overall risk assessment of the Pictures Archiving and Communication System (PACS). 2008-11 Thesis http://eprints.utm.my/id/eprint/9507/ http://eprints.utm.my/id/eprint/9507/1/NazroolOmarMFC2008.pdf application/pdf en public http://dms.library.utm.my:8080/vital/access/manager/Repository/vital:853?site_name=Restricted Repository masters Universiti Teknologi Malaysia, Faculty of Computer Science and Information System Faculty of Computer Science and Information System International Organization for Standardization, 2008. “ISO/IEC 27005 Information Security Risk Management Standard�. ISO Publication. Council of Standards Australia, 1999. “AS/NZS 4360:1999 Australian Standard Risk Management�. Standards Association of Australia. Gary Stoneburner, Alice Goguen, and Alexis Feringa, 2002. “NIST - Risk Management Guide for Information Technology Systems�. NIST Special Publication 800-30. Joanne Bechta Dugaan, Tariq Said Assaf, 2003. “Dynamic Fault Tree Analysis of a Reconfigurable Software System�. University of Virginia. Hong Xu, 2004. �Combining Dynamic Fault Trees and Event Trees for Probabilistic Risk Assessment�. University of Virginia, Charlottesville. Hichem Boudali, Pepijn Crouzen, and Mariëlle Stoelinga, 2007. “Dynamic Fault Tree Analysis using Input/Output Interactive Markov Chains�. University of Twente. Geoffrey H. Wold and Robert F. Shriver, 1997. “Risk Analysis Techniques�. Disaster Recovery Journal. Ian P. Leistikow, Geert H. Blijham, 2005. “System-based risk analysis in healthcare�. University Medical Center Utrecht. Major Marc A. Lee, 2007. “A Dynamic Systems Simulation Approach to Risk Mitigation for Critical Infrastructure�. United States Military Academy. James W. Meritt, 2005. “A Method for Quantitative Risk Analysis�. CISSP. Jim Wang, 2003. “Modeling Techniques for a Risk Analysis Methodology for Software Systems�. Carnegie Mellon University. Gary Leonard Cave, 2002. “Qualitative Analysis, Methodologies in the USA�. Entomologist, USDA-APHIS. Dr. Doreen Watler, 2002. “Qualitative Risk Analysis: Methodologies And Applications In Canada�. Canadian Food Inspection Agency. L. Baliwangi, H. Arima, K. B. Artana, K. Ishida, 2007. “Risk Modification Through System Dynamics Simulation�. Kobe University Japan, Kampus ITS Keputih Surabaya. Alfredo Moscardini, Mohamed Loutfi and Raed Al-Qirem, 2007. “The Use of System Dynamics Models to evaluate the Credit Worthiness of firms�. University of Sunderland. Jean-Peter Ylén, 2007. “System Dynamic Model For E-Commerce Customer Retention Strategy�. Technical Research Centre of Finland VTT. |