{"id":"https://openalex.org/W2889773352","doi":"https://doi.org/10.1109/access.2018.2868726","title":"A Data-Driven Security Risk Assessment Scheme for Personal Data Protection","display_name":"A Data-Driven Security Risk Assessment Scheme for Personal Data Protection","publication_year":2018,"publication_date":"2018-01-01","ids":{"openalex":"https://openalex.org/W2889773352","doi":"https://doi.org/10.1109/access.2018.2868726","mag":"2889773352"},"language":"en","primary_location":{"id":"doi:10.1109/access.2018.2868726","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2868726","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1109/access.2018.2868726","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5031678671","display_name":"Shi-Cho Cha","orcid":"https://orcid.org/0000-0002-2739-9512"},"institutions":[{"id":"https://openalex.org/I154864474","display_name":"National Taiwan University of Science and Technology","ror":"https://ror.org/00q09pe49","country_code":"TW","type":"education","lineage":["https://openalex.org/I154864474"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Shi-Cho Cha","raw_affiliation_strings":["Department of Information Management, National Taiwan University of Science and Technology, Taipei, Taiwan"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Information Management, National Taiwan University of Science and Technology, Taipei, Taiwan","institution_ids":["https://openalex.org/I154864474"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5043276911","display_name":"Kuo\u2010Hui Yeh","orcid":"https://orcid.org/0000-0003-0598-761X"},"institutions":[{"id":"https://openalex.org/I33096239","display_name":"National Dong Hwa University","ror":"https://ror.org/00mng9617","country_code":"TW","type":"education","lineage":["https://openalex.org/I33096239"]}],"countries":["TW"],"is_corresponding":false,"raw_author_name":"Kuo-Hui Yeh","raw_affiliation_strings":["Department of Information Management, National Dong Hwa University, Hualien, Taiwan","ORCiD"],"raw_orcid":"https://orcid.org/0000-0003-0598-761X","affiliations":[{"raw_affiliation_string":"Department of Information Management, National Dong Hwa University, Hualien, Taiwan","institution_ids":["https://openalex.org/I33096239"]},{"raw_affiliation_string":"ORCiD","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":{"value":1850,"currency":"USD","value_usd":1850},"apc_paid":{"value":1850,"currency":"USD","value_usd":1850},"fwci":7.4036,"has_fulltext":false,"cited_by_count":30,"citation_normalized_percentile":{"value":0.97318954,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":99},"biblio":{"volume":"6","issue":null,"first_page":"50510","last_page":"50517"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9987000226974487,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.996399998664856,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11719","display_name":"Data Quality and Management","score":0.983299970626831,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6647932529449463},{"id":"https://openalex.org/keywords/asset","display_name":"Asset (computer security)","score":0.600368857383728},{"id":"https://openalex.org/keywords/data-protection-act-1998","display_name":"Data Protection Act 1998","score":0.5867751240730286},{"id":"https://openalex.org/keywords/data-security","display_name":"Data security","score":0.5338239669799805},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5144562721252441},{"id":"https://openalex.org/keywords/personally-identifiable-information","display_name":"Personally identifiable information","score":0.5129327774047852},{"id":"https://openalex.org/keywords/data-breach","display_name":"Data breach","score":0.4966126084327698},{"id":"https://openalex.org/keywords/risk-assessment","display_name":"Risk assessment","score":0.4922010004520416},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4857245087623596},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.47289884090423584},{"id":"https://openalex.org/keywords/risk-management","display_name":"Risk management","score":0.4651103615760803},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.26255369186401367},{"id":"https://openalex.org/keywords/finance","display_name":"Finance","score":0.09272348880767822},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.0800132155418396}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6647932529449463},{"id":"https://openalex.org/C76178495","wikidata":"https://www.wikidata.org/wiki/Q4808784","display_name":"Asset (computer security)","level":2,"score":0.600368857383728},{"id":"https://openalex.org/C69360830","wikidata":"https://www.wikidata.org/wiki/Q1172237","display_name":"Data Protection Act 1998","level":2,"score":0.5867751240730286},{"id":"https://openalex.org/C10511746","wikidata":"https://www.wikidata.org/wiki/Q899388","display_name":"Data security","level":3,"score":0.5338239669799805},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5144562721252441},{"id":"https://openalex.org/C169093310","wikidata":"https://www.wikidata.org/wiki/Q3702971","display_name":"Personally identifiable information","level":2,"score":0.5129327774047852},{"id":"https://openalex.org/C165609540","wikidata":"https://www.wikidata.org/wiki/Q1172486","display_name":"Data breach","level":2,"score":0.4966126084327698},{"id":"https://openalex.org/C12174686","wikidata":"https://www.wikidata.org/wiki/Q1058438","display_name":"Risk assessment","level":2,"score":0.4922010004520416},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4857245087623596},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.47289884090423584},{"id":"https://openalex.org/C32896092","wikidata":"https://www.wikidata.org/wiki/Q189447","display_name":"Risk management","level":2,"score":0.4651103615760803},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.26255369186401367},{"id":"https://openalex.org/C10138342","wikidata":"https://www.wikidata.org/wiki/Q43015","display_name":"Finance","level":1,"score":0.09272348880767822},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.0800132155418396},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/access.2018.2868726","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2868726","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:bb2f8659f9cd4cd997d61b11ac84a0d8","is_oa":true,"landing_page_url":"https://doaj.org/article/bb2f8659f9cd4cd997d61b11ac84a0d8","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Access, Vol 6, Pp 50510-50517 (2018)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1109/access.2018.2868726","is_oa":true,"landing_page_url":"https://doi.org/10.1109/access.2018.2868726","pdf_url":null,"source":{"id":"https://openalex.org/S2485537415","display_name":"IEEE Access","issn_l":"2169-3536","issn":["2169-3536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Access","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.6200000047683716,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G2449532359","display_name":null,"funder_award_id":"MOST 105-2221-E-259-014-MY3","funder_id":"https://openalex.org/F4320322795","funder_display_name":"Ministry of Science and Technology, Taiwan"},{"id":"https://openalex.org/G341230014","display_name":null,"funder_award_id":"MOST 107-2218-E-011-012","funder_id":"https://openalex.org/F4320322795","funder_display_name":"Ministry of Science and Technology, Taiwan"},{"id":"https://openalex.org/G3909899718","display_name":null,"funder_award_id":"MOST 105-2221-E-011-079-MY3","funder_id":"https://openalex.org/F4320322795","funder_display_name":"Ministry of Science and Technology, Taiwan"},{"id":"https://openalex.org/G6426756149","display_name":null,"funder_award_id":"MOST 105-2221-E-011-070-MY3","funder_id":"https://openalex.org/F4320322795","funder_display_name":"Ministry of Science and Technology, Taiwan"}],"funders":[{"id":"https://openalex.org/F4320322795","display_name":"Ministry of Science and Technology, Taiwan","ror":"https://ror.org/02kv4zf79"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W1558089875","https://openalex.org/W1925725102","https://openalex.org/W1973715336","https://openalex.org/W2028907687","https://openalex.org/W2031189121","https://openalex.org/W2032557099","https://openalex.org/W2034267558","https://openalex.org/W2067860182","https://openalex.org/W2103253321","https://openalex.org/W2130475833","https://openalex.org/W2131060714","https://openalex.org/W2138645518","https://openalex.org/W2153055577","https://openalex.org/W2369295637","https://openalex.org/W2475320399","https://openalex.org/W2559657735","https://openalex.org/W2617872846","https://openalex.org/W2754030209","https://openalex.org/W6633465315","https://openalex.org/W6679056614"],"related_works":["https://openalex.org/W1265951235","https://openalex.org/W4390203642","https://openalex.org/W3176177457","https://openalex.org/W4245730406","https://openalex.org/W4399760501","https://openalex.org/W3118596070","https://openalex.org/W2067228051","https://openalex.org/W2528057036","https://openalex.org/W3125933069","https://openalex.org/W189247940"],"abstract_inverted_index":{"To":[0],"protect":[1,188],"collected":[2,66],"personal":[3,18,42,53,67,80,113,133,173,189],"data,":[4],"current":[5],"data":[6,19,54,68,71,81,153,174],"protection":[7],"laws":[8],"and":[9,16,83,94],"regulations":[10],"usually":[11],"request":[12],"organizations":[13,32,147,181],"that":[14,154],"accumulate":[15],"use":[17],"to":[20,33,40,76,91,111,116,128,138,151,187],"adopt":[21,182],"reasonable":[22],"security":[23,35,185],"safeguards.":[24],"In":[25,56,74,135],"this":[26],"case,":[27],"risk":[28,49,103,120,141,169],"assessment":[29,50,121,142,170],"approaches":[30],"enable":[31],"specify":[34],"controls":[36],"as":[37],"appropriate":[38,184],"risks":[39,127,150],"their":[41],"data.":[43,96,114,134,190],"This":[44],"paper":[45],"proposes":[46],"a":[47,117,139],"data-driven":[48],"approach":[51,145,165],"for":[52,101],"protection.":[55],"the":[57,85,105,123,163,168,176],"proposed":[58,124,164],"approach,":[59,122,143],"an":[60],"organization":[61,86,106],"can":[62,87,107,166],"model":[63],"flows":[64],"of":[65,79,172],"using":[69],"extended":[70],"flow":[72],"diagrams.":[73],"addition":[75],"recognizing":[77],"scenarios":[78],"collection":[82],"usage,":[84],"identify":[88,108],"components":[89,100],"used":[90,157],"process,":[92],"store,":[93],"transmit":[95],"Based":[97],"on":[98],"associated":[99,130],"further":[102],"evaluation,":[104],"potential":[109],"incidents":[110],"each":[112],"Compared":[115],"traditional":[118],"asset-oriented":[119],"method":[125],"diminishes":[126],"assets":[129],"with":[131],"sensitive":[132,152],"addition,":[136],"compared":[137],"process-oriented":[140],"our":[144],"prevents":[146],"from":[148],"overlooking":[149],"are":[155],"not":[156],"in":[158],"critical":[159],"business":[160],"processes.":[161],"While":[162],"improve":[167],"accuracy":[171],"protection,":[175],"study":[177],"may":[178],"hopefully":[179],"help":[180],"more":[183],"safeguards":[186]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":4},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":5},{"year":2019,"cited_by_count":9}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}