IDEAS home Printed from https://ideas.repec.org/a/igg/jisscm/v2y2009i3p35-49.html
   My bibliography  Save this article

A Stochastic Model for Improving Information Security in Supply Chain Systems

Author

Listed:
  • Ibrahim Al Kattan

    (American University of Sharjah, United Arab Emirates)

  • Ahmed Al Nunu

    (American University of Sharjah, United Arab Emirates)

  • Kassem Saleh

    (Kuwait University, Kuwait)

Abstract

This article presents a probabilistic security model for supply chain management systems (SCM) in which the basic goals of security (including confidentiality, integrity, availability and accountability, CIAA) are modeled and analyzed. Consequently, the weak points in system security are identified. A stochastic model using measurable values to describe the information system security of a SCM is introduced. Information security is a crucial and integral part of the network of supply chains. Each chain or driver requires a different security level according to the services it contributes to the overall SCM system. Different probabilistic weights are assigned to the four goals CIAA of security depending on the SCM driver’s mission. A Semi-Markov chain model is used to describe the probabilistic nature of different security levels for each driver in the system. A comparison of the steady-state security for a multi-driver model with different levels of attack is performed, and the results analyzed. Enhanced supply chain security could be achieved by identifying the effects of attacks on the security goals of an organization. The use of this model helps to identify weak points in supply chain system security, and offers hints on how to strengthen them. The model is tested by considering intrusion scenarios representing different levels of attack on the SCM system. An analysis of the results is performed using an interactive application.

Suggested Citation

  • Ibrahim Al Kattan & Ahmed Al Nunu & Kassem Saleh, 2009. "A Stochastic Model for Improving Information Security in Supply Chain Systems," International Journal of Information Systems and Supply Chain Management (IJISSCM), IGI Global, vol. 2(3), pages 35-49, July.
    • Handle: RePEc:igg:jisscm:v:2:y:2009:i:3:p:35-49
    as

    Download full text from publisher

    File URL: http://services.igi-global.com/resolvedoi/resolve.aspx?doi=10.4018/jisscm.2009070103
    Download Restriction: no
    ---><---

    More about this item

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:igg:jisscm:v:2:y:2009:i:3:p:35-49. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Journal Editor (email available below). General contact details of provider: https://www.igi-global.com .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.