| Article ID: | iaor20072458 |
| Country: | United States |
| Volume: | 10 |
| Issue: | 2 |
| Start Page Number: | 19 |
| End Page Number: | 38 |
| Publication Date: | Jun 2005 |
| Journal: | Military Operations Research |
| Authors: | Parnell Gregory S., Buckshaw Donald L., Unkenholz Willard L., Parks Donald L., Wallner James M., Saydjari O. Sami |
Information assurance is critical to future military operations. This paper describes a value-based information assurance methodology for Mission Oriented Risk and Design Analysis (MORDA) of critical information systems. The MORDA methodology has been successfully applied on seven major Department of Defense risk assessment studies. MORDA is a quantitative risk assessment and risk management process that uses risk analysis techniques, multiple objective decision analysis models, and portfolio analysis techniques to evaluate information system designs. The process helps identify best allocation of system design and operation resources that will ensure an operable information system in a hostile and malicious operating environment.