Abstract | ||
---|---|---|
The paramount complexity of enterprise information leads to hard-to-deal security management issues and system configurations. We present a security management framework of an arbitrary information system (IS) which builds upon knowledge-based resources, such as security ontology (SO) providing reusable security knowledge interoperability, aggregation and reasoning exploiting security knowledge from diverse sources; in addition, the separation of security requirements from their technical implementations facilitates the security management. We provide a feasible framework, which links the high-level policy statements and deployable security controls and facilitates the security expert's work. |
Year | DOI | Venue |
---|---|---|
2006 | 10.1109/AINA.2006.329 | Advanced Information Networking and Applications, 2006. AINA 2006. 20th International Conference |
Keywords | Field | DocType |
computer network management,information systems,ontologies (artificial intelligence),open systems,telecommunication security,aggregation,enterprise information,high-level policy statement,information system,knowledge-based resource,ontology-based security management,paramount complexity,reusable security knowledge interoperability,Risk Assessment.,Security Knowledge,Security Management,Security Ontology | Security convergence,Security testing,Security through obscurity,Computer security,Computer science,Knowledge management,Security service,Cloud computing security,Security information and event management,Computer security model,Security management,Distributed computing | Conference |
Volume | ISSN | ISBN |
1 | 1550-445X | 0-7695-2466-4 |
Citations | PageRank | References |
44 | 1.94 | 14 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Bill Tsoumas | 1 | 147 | 9.61 |
Dimitris Gritzalis | 2 | 955 | 99.85 |