Assessment of the Company Security System Based on Fuzzy Logic

Abstract

Company systems with low-level protection are always easy to penetrate, so security system assessment is essential. This paper is focused on developing a model to assess the effectiveness of security systems in a company using fuzzy logic to protect it from intrusions. Numerous policy frameworks are available to evaluate the security of a network, system, or single computer. This work presents the most important criteria to assess the effectiveness of the company security system. The linguistic concepts to formalize the criteria were applied to develop a model that explains the true relationship between defensive capabilities and the probability of adversary success, concerning which the experts will conclude and give an assessment of the effectiveness of the security system in a company, and that is warning the system administrator for expected threats. The proposed study shows its superiority in fast response to cyber threats. To simulate the situation of a company's security system using fuzzy logic, we use MATLAB.