Abstract
For effectively facing information security threats under rapidly changing information-oriented environment, we need intelligent measuring the information security level of the whole enterprise organization. Most of the evaluation systems have performed evaluation with an emphasis on information security products so far. However, evaluating information security level for an enterprise needs analysis of the whole enterprise organization, and a synthetic and systematic evaluation system based on it. This study has tried to grasp the information security level of the whole enterprise organization, and develop an evaluation system of information security level for suggesting a more developing direction of information security with an intelligent agent.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
PWC, secure, defend, and transform: the complete e-business legal strategy, PWC (1999)
PWC, security basics: a whitepaper, PWC (1999)
Day, R., Daly, J., Christiansen, C.A.: eSecurity the essential eBusiness enabler, IDC (1999)
Jenkins, B.B.: security risk analysis and management, countermeasures, Inc. (1998)
Common Criteria Project, common criteria for information technology security evaluation, common criteria (1998)
Guptill, B., Price, C.: A security framework for enterprise using the internet, Gartner Group (1996)
NIST, an introduction to computer security : the NIST handbook, NIST(national institute of standards and technology) (1995)
Moses, R.: corporate risk analysis and management strategies, European convention on security and detection, conference publication No. 408 (1995)
Barnard, L., et al.: The evaluation and certification of information security against BS7799. Information Management & Computer Security 6(2), 72–77 (1998)
von solms, R.: Information Security Management (3): the code of practice for Information Security Management (BS7799). Information Management & Computer Security 6(5), 224–225 (1998)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Ko, I.S., Lee, G., Na, Y.J. (2005). Development of an Intelligent Information Security Evaluation Indices System for an Enterprise Organization. In: Khosla, R., Howlett, R.J., Jain, L.C. (eds) Knowledge-Based Intelligent Information and Engineering Systems. KES 2005. Lecture Notes in Computer Science(), vol 3682. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11552451_142
Download citation
DOI: https://doi.org/10.1007/11552451_142
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-28895-4
Online ISBN: 978-3-540-31986-3
eBook Packages: Computer ScienceComputer Science (R0)