A Knowledge-Based Tool to Support Clear Relationship between Threats and Countermeasures Based on International Standards
In this paper,we propose a web application for security policy management by using threats-countermeasure model based on international standards.The main objective of this research is to create a knowledge-base to identify and specify the threats that affect the IT environment.In addition,our proposed knowledge-base system intends to fuse similar security controls or objectives to create effectively a security guideline for a specific IT environment.This web application display a detail of the most common threats to the information systems,and for each threat,present a set of related security controls from different international standards including ISO/IEC 27002.
Guillermo Horacio Ramirez Caceres Yoshimi Teshigawara
Graduate School of Engineering,Soka University 1-236 Tangi-cho,Hachioji,Tokyo 192-8577,Japan
国际会议
11th Asia-Pacific Network Operations and Management Symposium(APNOMS 2008)(第十一届亚太网络运行和管理国际研讨会)
北京
英文
523-526
2008-10-22(万方平台首次上网日期,不代表论文的发表时间)