Title :
Security analysis and the DSM model
Author_Institution :
Gippsland Sch. of Comput. & InfoTech, Monash Univ., Clayton, Vic., Australia
Abstract :
This paper mainly discusses security analysis in Web-based information systems. The analysis focuses on current client/server system application environments and system vulnerabilities. The paper also briefly describes a proposed conceptual security model-dual security model (DSM). The model focuses on risk management by identifying possible attacks on the system and addressing them before they can impact significantly system security and business of the organisation. The key design feature of this model is developing a high level risk assessment framework for analysing and evaluating the system environment, interrelated system functions, risk modelling and the evaluation process in Web-based information systems.
Keywords :
Internet; Web sites; client-server systems; computer network management; file servers; risk management; security of data; telecommunication security; Web-based information systems; attacks; client/server system application environment; dual security model; high level risk assessment framework; risk management; risk modelling; security analysis; system vulnerabilities; Computer crime; Computer hacking; Data security; Information analysis; Information security; Information systems; Internet; Network servers; Risk management; Web server;
Conference_Titel :
Database and Expert Systems Applications, 2002. Proceedings. 13th International Workshop on
Print_ISBN :
0-7695-1668-8
DOI :
10.1109/DEXA.2002.1045870
