Name
Title | ||
|---|---|---|
A best practices-oriented approach for establishing trust chains within Virtual Organisations |
Abstract | ||
|---|---|---|
Within a Virtual Organisation collaborative environment, the organisations' security domains must be interconnected through Internet and Information and Communication Technologies to allow these organisations to share data and exchange resources and competencies in a secure way. Each organisation must open its information system and thus, security concerns are raised when setting up collaboration. The partner organisations need to establish a chain of trust; they need to know the level of experience and maturity the administrators have regarding security issues. Security practices, security policies, Information Security Management Systems and security standards are the security management mechanisms adopted to offer to partners a way to quantify trust. In this paper, we detail our tool tailored to evaluate the maturity level of the security practices deployed within the organisations' information systems; this tool is based on the information security best practices provided by the ISO/IEC 17799 security standard which we have adapted to Virtual Organisations. Our tool is a support decision system providing the partner organisations by the means to choose the best solution for building the collaborative network. Index Terms--Virtual Organisations; information security; trust chain; best practices; ISMS; maturity level; ISO/IEC 17799; ISO/IEC 27001 |
Year | DOI | Venue |
|---|---|---|
2008 | 10.1109/EDOCW.2008.3 | EDOCW |
Keywords | Field | DocType |
information security best practice,practices-oriented approach,security concern,security practice,virtual organisations,security standard,security management mechanism,information system,security policy,information security,security issue,security domain,trust chain,indexing terms,best practice,security,security management,security policies,iso,commerce,information systems,groupware,decision support systems,information security management,authentication,internet,virtual reality,information and communication technology | Security convergence,Computer science,Information security standards,Certified Information Security Manager,Information security,Knowledge management,Security service,Information security management,Security information and event management,Information security management system | Conference |
Citations | PageRank | References |
3 | 0.48 | 3 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Michel Kamel | 1 | 19 | 3.57 |
| Romain Laborde | 2 | 162 | 28.88 |
| Abdelmalek Benzekri | 3 | 77 | 21.73 |
| Francois Barrere | 4 | 6 | 1.59 |