Validation of the Software Supporting Information Security and Business Continuity Management Processes
作者: Jacek Baginski , Andrzej Białas
DOI: 10.1007/978-3-642-30662-4_1
关键词:
摘要: The chapter presents the OSCAD tool supporting business continuity (according to BS 25999) and information security management ISO/IEC 27001) processes in organizations. First, subject of validation, i.e. software is presented, next goal range validation are briefly described. focused on key process related risk analyses. A business-oriented, two-stage analysis method implemented assumes a criticality assessment at first stage detailed threats vulnerabilities for most critical second analysis. main objective answer how integrate those two systems efficient way.
springer.com
sci-hub.st 参考文章(11)
Bialas Andrzej, Security Trade-off Ontological Approach InTech. ,(2009) , 10.5772/8080
Andrzej Białas, Development of an Integrated, Risk-Based Platform for Information and E-Services Security Lecture Notes in Computer Science. pp. 316- 329 ,(2006) , 10.1007/11875567_24
Kevin Lano, David Clark, Kelly Androutsopoulos, Safety and Security Analysis of Object-Oriented Models international conference on computer safety reliability and security. pp. 82- 93 ,(2002) , 10.1007/3-540-45732-1_10
Jacek Bagiński, Maciej Rostański, The Modeling of Business Impact Analysis for the Loss of Integrity, Confidentiality and Availability in Business Processes and Data Theoretical and Applied Informatics. ,vol. 23, pp. 73- 82 ,(2011) , 10.2478/V10179-011-0005-9
Andrzej Bialas, Computer Support in Business Continuity and Information Security Management Springer, Berlin, Heidelberg. pp. 155- 169 ,(2012) , 10.1007/978-3-642-25355-3_14
Krzysztof Lisek, Integrated, BusinessOriented, TwoStage Risk Analysis ,(2007)
Gary Stoneburner, Alice Goguen, Alexis Feringa, Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology Risk Management Guide for Information Technology Systems: Recommendations of the National Institute of Standards and Technology / AHIMA, American Health Information Management Association. ,(2002) , 10.6028/NIST.SP.800-30
Jeff Voas, Robert Patt-Corner, Tim Grance, Lee Badger, Cloud Computing Synopsis and Recommendations: Recommendations of the National Institute of Standards and Technology ,(2012)
Internet - Technical Developments and Applications 2 Springer Berlin Heidelberg. ,(2012) , 10.1007/978-3-642-25355-3