Showing 1–5 of 5 results for author: Syamsuddin, I

Multicriteria Evaluation and Sensitivity Analysis on Information Security

Authors: Irfan Syamsuddin

Abstract: Information security plays a significant role in recent information society. Increasing number and impact of cyber attacks on information assets have resulted the increasing awareness among managers that attack on information is actually attack on organization itself. Unfortunately, particular model for information security evaluation for management levels is still not well defined. In this study,… ▽ More Information security plays a significant role in recent information society. Increasing number and impact of cyber attacks on information assets have resulted the increasing awareness among managers that attack on information is actually attack on organization itself. Unfortunately, particular model for information security evaluation for management levels is still not well defined. In this study, decision analysis based on Ternary Analytic Hierarchy Process (T-AHP) is proposed as a novel model to aid managers who responsible in making strategic evaluation related to information security issues. In addition, sensitivity analysis is applied to extend our analysis by using several "what-if" scenarios in order to measure the consistency of the final evaluation. Finally, we conclude that the final evaluation made by managers has a significant consistency shown by sensitivity analysis results. △ Less

Submitted 11 October, 2013; originally announced October 2013.

Journal ref: International Journal of Computer Applications 69(24):22-25, May 2013

A New Fuzzy MCDM Framework to Evaluate E-Government Security Strategy

Authors: Irfan Syamsuddin, Junseok Hwang

Abstract: Ensuring security of e-government applications and infrastructures is crucial to maintain trust among stakeholders to store, process and exchange information over the e-government systems. Due to dynamic and continuous threats on e-government information security, policy makers need to perform evaluation on existing information security strategy as to deliver trusted e-government services. This pa… ▽ More Ensuring security of e-government applications and infrastructures is crucial to maintain trust among stakeholders to store, process and exchange information over the e-government systems. Due to dynamic and continuous threats on e-government information security, policy makers need to perform evaluation on existing information security strategy as to deliver trusted e-government services. This paper presents an information security evaluation framework based on new fuzzy multi criteria decision making (MCDM) to help policy makers conduct comprehensive assessment of e-government security strategy. △ Less

Submitted 12 November, 2010; originally announced November 2010.

Comments: IEEE 4th International Conference on Application of Information and Communication Technologies AICT2010

A Survey on Low-cost RFID Authentication Protocols

Authors: Irfan Syamsuddin, Song Han, Vidyasagar Potdar, Tharam Dillon

Abstract: This paper presents a survey on several RFID authentication protocols under low cost restrictions. Low cost RFID are mainly addressed with limited security and privacy protections. In this study, we explore several protocols with various authentication mechanisms found in literature that satisfy low cost restrictions. Assessments of these protocols are based on data protection, tracking protection… ▽ More This paper presents a survey on several RFID authentication protocols under low cost restrictions. Low cost RFID are mainly addressed with limited security and privacy protections. In this study, we explore several protocols with various authentication mechanisms found in literature that satisfy low cost restrictions. Assessments of these protocols are based on data protection, tracking protection, forward security. Finally, it is concluded that no single low cost RFID protocol fully meets the requirement of the given assessments. While a protocol satisfies one or two assessments, it fails to fully meet the requirement of the third assessment. This study provides a new insight in RFID literature which can be used particularly by small and medium industries to choose the appropriate RFID protocol for their needs. △ Less

Submitted 2 February, 2012; v1 submitted 19 September, 2010; originally announced September 2010.

Comments: Submitted to the International Journal of Computer Systems Science and Engineering

A Survey of RFID Authentication Protocols Based on Hash-Chain Method

Authors: Irfan Syamsuddin, Tharam Dillon, Elizabeth Chang, Song Han

Abstract: Security and privacy are the inherent problems in RFID communications. There are several protocols have been proposed to overcome those problems. Hash chain is commonly employed by the protocols to improve security and privacy for RFID authentication. Although the protocols able to provide specific solution for RFID security and privacy problems, they fail to provide integrated solution. This arti… ▽ More Security and privacy are the inherent problems in RFID communications. There are several protocols have been proposed to overcome those problems. Hash chain is commonly employed by the protocols to improve security and privacy for RFID authentication. Although the protocols able to provide specific solution for RFID security and privacy problems, they fail to provide integrated solution. This article is a survey to closely observe those protocols in terms of its focus and limitations. △ Less

Submitted 14 August, 2010; originally announced August 2010.

Comments: Third ICCIT 2008 International Conference on Convergence and Hybrid Information Technology

The Application of AHP Model to Guide Decision Makers: A Case Study of E-banking Security

Authors: Irfan Syamsuddin, Junseok Hwang

Abstract: Changes in technology have resulted in new ways for bankers to deliver their services to costumers. Electronic banking systems in various forms are the evidence of such advancement. However, information security threats also evolving along this trend. This paper proposes the application of Analytic Hierarchy Process (AHP) methodology to guide decision makers in banking industries to deal with info… ▽ More Changes in technology have resulted in new ways for bankers to deliver their services to costumers. Electronic banking systems in various forms are the evidence of such advancement. However, information security threats also evolving along this trend. This paper proposes the application of Analytic Hierarchy Process (AHP) methodology to guide decision makers in banking industries to deal with information security policy. The model is structured according aspects of information security policy in conjunction with information security elements. We found that cultural aspect is valued on the top priority among other security aspects, while confidentiality is considered as the most important factor in terms of information security elements. △ Less

Submitted 2 July, 2010; originally announced July 2010.

Comments: 5 pages