Ontology-Based Evaluation of ISO 27001

Abstract : Information security risks threaten the ability of organizations of reaching their operational and strategic goals. Increasing diversification of the information security landscapes makes addressing all risks a challenging task. Information security standards have positioned themselves as generic solutions to tackle a broad range of risks and try to guide security managers in their endeav ors. However, it is not evident if such standards have the required holis tic approach to be a solid foundation. In this paper a metamodel of the ISO 27001 security standard explicating its core concepts is presented. We then compare the constructed metamodel with various information security ontolo gies and analyze for comprehensiveness. We conclude with a discussion of core concepts in the information security domain.
Type de document :
Communication dans un congrès
Wojciech Cellary; Elsa Estevez. 10th IFIP WG 6.11 Conference on e-Business, e-Services, and e-Society (I3E), Nov 2010, Buenos Aires, Argentina. Springer, IFIP Advances in Information and Communication Technology, AICT-341, pp.93-102, 2010, Software Services for e-World. 〈10.1007/978-3-642-16283-1_13〉
Liste complète des métadonnées

Littérature citée [32 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01055030
Contributeur : Hal Ifip <>
Soumis le : lundi 11 août 2014 - 10:26:23
Dernière modification le : vendredi 11 août 2017 - 14:59:25
Document(s) archivé(s) le : mercredi 26 novembre 2014 - 21:51:44

Fichier

i3e2010_submission_42.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Danijel Milicevic, Matthias Goeken. Ontology-Based Evaluation of ISO 27001. Wojciech Cellary; Elsa Estevez. 10th IFIP WG 6.11 Conference on e-Business, e-Services, and e-Society (I3E), Nov 2010, Buenos Aires, Argentina. Springer, IFIP Advances in Information and Communication Technology, AICT-341, pp.93-102, 2010, Software Services for e-World. 〈10.1007/978-3-642-16283-1_13〉. 〈hal-01055030〉

Partager

Métriques

Consultations de la notice

89

Téléchargements de fichiers

339