Browse Definitions :
Definition

rule of five (statistics)

The rule of five is a rule of thumb in statistics that estimates the median of a population by choosing a random sample of five from that population. It states that there is a 93.75% chance that the median value of a population is between the smallest and largest values in any random sample of five. This rule can be used to save data collection time in order to make a quicker business decision.

In a scenario where the mid-point or median of a population is required, the rule of five can be used to approximate it. In any population, half the individuals will be above the median and half below. Therefore, the likelihood of choosing a value above or below the median is 50% either way, equivalent to the flip of a coin.  The likelihood of flipping 100% tails or heads would be 1/32 or 3.125%. So the chance of not getting all heads or tails is 100 - (3.125 x 2), or 93.75. Thus, the probability of the median sample being between the lowest and highest samples in any random sampling of five is 93.25%.

The goal of the rule of five is to reduce uncertainty without wasting resources gathering every piece of data. Rather than survey an entire population, applying the rule of five involves selecting five random members as a representative sample of the population. The results themselves may be less accurate, but finding the overall precision of an entire group is usually unnecessary. The rule of five makes it possible to achieve an acceptable level of accuracy to enable faster a decision-making process and trend prediction.

The rule of five was conceived by Douglas Hubbard, the author of "How to Measure Anything: Finding the Value of Intangibles in Business" and an established expert in risk management, metrics and decision analysis. 

This was last updated in December 2018

Continue Reading About rule of five (statistics)

SearchCompliance
  • OPSEC (operations security)

    OPSEC (operations security) is a security and risk management process and strategy that classifies information, then determines ...

  • smart contract

    A smart contract is a decentralized application that executes business logic in response to events.

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

SearchSecurity
  • biometric verification

    Biometric verification is any means by which a person can be uniquely identified by evaluating one or more distinguishing ...

  • password

    A password is a string of characters used to verify the identity of a user during the authentication process.

  • biometrics

    Biometrics is the measurement and statistical analysis of people's unique physical and behavioral characteristics.

SearchHealthIT
SearchDisasterRecovery
  • What is risk mitigation?

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • change control

    Change control is a systematic approach to managing all changes made to a product or system.

  • disaster recovery (DR)

    Disaster recovery (DR) is an organization's ability to respond to and recover from an event that affects business operations.

SearchStorage
  • PCIe SSD (PCIe solid-state drive)

    A PCIe SSD (PCIe solid-state drive) is a high-speed expansion card that attaches a computer to its peripherals.

  • VRAM (video RAM)

    VRAM (video RAM) refers to any type of random access memory (RAM) specifically used to store image data for a computer display.

  • virtual memory

    Virtual memory is a memory management technique where secondary memory can be used as if it were a part of the main memory.

Close