Title :
Enhancement of Asset value classification for Mobile devices
Author :
Yazid, S.A.I. ; Faizal, M.A. ; Rabiah, A. ; Shahrin, S. ; Solahuddin, S.
Author_Institution :
Fac. of Inf. & Commun. Technol., Univ. Teknikal Malaysia, Ayer Keroh, Malaysia
Abstract :
Information in mobile devices is an asset like other important business assets, is essential to an organization´s business and consequently needs to be suitably protected. The use of mobile devices involves the sharing of its functions between the official and personal use of the data in the same device. The organization needs to perform a risk assessment in order to determine the organization´s mobile devices exposure to risk and determine the best way to manage this. The determination of risk within the methodology is based upon the standard formula, which the risk is calculated from the multiplication of the asset value, threats and vulnerability. The ISO 27001 requires is that `An appropriate risk assessment shall be undertaken´. The purpose of this study is to introduce enhancement ways to measure the value of a mobile device using ISO 27001 assets management methodology and mobile device categorization methodology.
Keywords :
asset management; business data processing; mobile computing; pattern classification; risk management; security of data; ISO 27001 asset management methodology; asset value classification; business assets; mobile device categorization methodology; organization business; organization mobile devices; risk assessment; risk management; Availability; Companies; Risk management; Security; Smart phones; ISO 27001; mobile device security; risk assessment;
Conference_Titel :
Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), 2012 International Conference on
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4673-1425-1
DOI :
10.1109/CyberSec.2012.6246097
