Modeling System Audit as a Sequential test with Discovery as a Failure Time Endpoint
11 Pages Posted: 28 Aug 2019
Date Written: February 15, 2011
Combining hazard models with SIR (Susceptible-Infected-Removed) epidemic modeling provides a means of calculating the optimal information systems audit strategy. Treating audit as a sequential test allows for the introduction of censoring techniques that enable the estimation of benefits from divergent audit strategies. This process can be used to gauge the economic benefits of these strategies in the selection of an optimal audit process designed to maximize the detection of compromised or malware infected hosts.
Keywords: Modeling, Hazard, non-homogeneous Poisson process (NHPP), failure intensity, SIR (Susceptible-Infected-Removed), epidemic modeling
Suggested Citation: Suggested Citation