A KNOWLEDGE BASE FOR JUSTIFIED INFORMATION SECURITY DECISION-MAKING

Daria Stepanova; Simon E. Parkin; Aad van Moorsel

Research.Publish.Connect.

*Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

*Please fill out at least one Field.

Name:
Country:
Subject:

Advanced Search Affiliations Search

If you're looking for an exact phrase use quotation marks on text fields.

Proceedings

Proceedings Search *Please fill out at least one Field. *Value must be an number!

Title:
ISBN:
Year:
Acronym:
Subject:

Advanced Search Proceedings Search

If you're looking for an exact phrase use quotation marks on text fields.

Papers

Papers Search *Please fill out at least one Field.

Title:
Author:
Affiliation:
Subject:

Advanced Search Papers Search

If you're looking for an exact phrase use quotation marks on text fields.

Authors

Authors Search *Please fill out at least one Field.

Name:
Affiliation:
Country:
Conference:
Subject:

Advanced Search Authors Search

If you're looking for an exact phrase use quotation marks on text fields.

Advanced Search

Paper

A KNOWLEDGE BASE FOR JUSTIFIED INFORMATION SECURITY DECISION-MAKING

Topics: Decision Support Systems; Ontology Engineering; Semantic Web Technologies

In Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT, 326-331, 2009 , Sofia, Bulgaria

Authors: Daria Stepanova ; Simon E. Parkin and Aad van Moorsel

Affiliation: Newcastle University, United Kingdom

Keyword(s): Information security, Ontology, Knowledge base, Human-behavioural factors.

Related Ontology Subjects/Areas/Topics: Artificial Intelligence ; Cloud Computing ; Data Engineering ; Decision Support Systems ; Enterprise Information Systems ; Enterprise Software Technologies ; Information Systems Analysis and Specification ; Knowledge Engineering and Ontology Development ; Knowledge-Based Systems ; Ontologies and the Semantic Web ; Ontology Engineering ; Semantic Web Technologies ; Services Science ; Software Agents and Internet Computing ; Software Engineering ; Symbolic Systems

Abstract: The majority of modern-day companies store commercially sensitive and valuable information assets in digital form. It is essential for the Chief Information Security Officer (CISO) within an organisation to ensure that such information is adequately protected. External standards exist to advise CISOs on how to secure information, but these are essentially ``one-size-fits-all''. Furthermore they do not consider the human-behavioural aspects that determine the impact of security controls upon employees, or how security controls can be best deployed to manage insecure employee behaviour. CISOs require more information than they are currently provided with to justify their information security management decisions. Here we present a knowledge base and accompanying user interface. The knowledge base represents key structural components of the ISO27002 security standard, formally relating them to one another. This empowers CISOs to understand how different security measures impact upon e ach other. It also considers how human-behavioural factors can be associated with these concepts. The accompanying user interface provides a means to present formalised information security concepts to CISOs. This paper describes the development of the knowledge base and user interface, highlighting and discussing key challenges and how they were resolved. (More)

CC BY-NC-ND 4.0

Guest: Register as new SciTePress user now for free.

SciTePress user: please login.

My Papers

You are not signed in, therefore limits apply to your IP address 18.226.93.207

In the current month:

Recent papers: 100 available of 100 total

2⁺ years older papers: 200 available of 200 total

Paper citation in several formats:

Stepanova, D.; Parkin, S. and Moorsel, A. (2009). A KNOWLEDGE BASE FOR JUSTIFIED INFORMATION SECURITY DECISION-MAKING. In Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT; ISBN 978-989-674-010-8; ISSN 2184-2833, SciTePress, pages 326-331. DOI: 10.5220/0002256703260331

@conference{icsoft09,
author={Daria Stepanova. and Simon E. Parkin. and Aad van Moorsel.},
title={A KNOWLEDGE BASE FOR JUSTIFIED INFORMATION SECURITY DECISION-MAKING},
booktitle={Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT},
year={2009},
pages={326-331},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002256703260331},
isbn={978-989-674-010-8},
issn={2184-2833},
}

TY - CONF

JO - Proceedings of the 4th International Conference on Software and Data Technologies - Volume 2: ICSOFT
TI - A KNOWLEDGE BASE FOR JUSTIFIED INFORMATION SECURITY DECISION-MAKING
SN - 978-989-674-010-8
IS - 2184-2833
AU - Stepanova, D.
AU - Parkin, S.
AU - Moorsel, A.
PY - 2009
SP - 326
EP - 331
DO - 10.5220/0002256703260331
PB - SciTePress