Title :
Towards an Ontology-based Security Management
Author :
Tsoumas, Bill ; Gritzalis, Dimitris
Author_Institution :
Dept. of Informatics, Athens Univ. of Econ. & Bus.
Abstract :
The paramount complexity of enterprise in formation leads to hard-to-deal security management issues and system configurations. We present a security management framework of an arbitrary information system (IS) which builds upon knowledge-based resources, such as security ontology (SO) providing reusable security knowledge interoperability, aggregation and reasoning exploiting security knowledge from diverse sources; in addition, the separation of security requirements from their technical implementations facilitates the security management. We provide a feasible framework which links the high-level policy statements and deployable security controls and facilitates the security expert´s work
Keywords :
computer network management; information systems; ontologies (artificial intelligence); open systems; telecommunication security; aggregation; enterprise information; high-level policy statement; information system; knowledge-based resource; ontology-based security management; paramount complexity; reusable security knowledge interoperability; Automatic control; Computer integrated manufacturing; IEC standards; ISO standards; Information security; Knowledge management; Management information systems; Ontologies; Resource management; Risk management; Risk Assessment.; Security Knowledge; Security Management; Security Ontology;
Conference_Titel :
Advanced Information Networking and Applications, 2006. AINA 2006. 20th International Conference on
Conference_Location :
Vienna
Print_ISBN :
0-7695-2466-4
DOI :
10.1109/AINA.2006.329
