Elements of risk assessment and information security models that administer the assets were analyzed. The problem is the lack of an information management mechanism in environments distributed in the public sector. The main objective is to generate a methodology to increase the level of information security on distributed architecture for a Public Organization of Ecuador. Were used the deductive method and exploratory research to examine the information of the reference articles. It turned out the following: Prototype of distributed architecture, Generic algorithm to mitigate risks expressed on flowchart and Attack probability formula. It was concluded that the proposal generated is an alternative to maintain the information in a secure way, with persistence and available.