DocumentCode :
2777916
Title :
E-Government System Security Model (eGSSM): A Multidimensional, Risk Based Approach to E-Government
Author :
Edwards, David C. ; Zavarsky, Pavol ; Ruhl, Ron ; Lindskog, Dale ; Aghili, Shaun
Author_Institution :
Inf. Syst. Security Manage., Concordia Univ. Coll. of Alberta, Edmonton, AB, Canada
fYear :
2011
fDate :
9-11 Oct. 2011
Firstpage :
1273
Lastpage :
1277
Abstract :
eGovernment Maturity Models (eGMMs) are widely used in the implementation and development of eGovernment systems. Motivated in part by legislation, scholarship has contributed significantly to its development with specific organizational agendas or to address narrowly defined areas. However, despite its pervasiveness, there lacks an approach that adequately addresses and integrates security into eGMMs at the various stages. Based on an extensive review of eGMMs, this research seeks to address a void in the available body of knowledge on eGMMs and proposes a model that integrates security into eGMMs at the various stages with an eGovernment System Security Model (eGSSM). The eGSSM is a theoretical framework, which is multidimensional in construct and employs a risk-based approach to integrating security into eGMMs. The key component to this model is the eGovernment Maturity Trigger. This trigger assesses a government´s ability to address Key Domain Areas within the eGovernment Stage Process Maturity (eGSPM) and mitigate security risk using the National Institute of Standards and Technology, Risk Management Framework (NIST RMF) in the eGovernment Security Risk Maturity (eGSRM). Define, Measure, Analyse, Improve and Control (DMAIC) principles are applied for measuring, controlling and reporting process performance, to achieve an optimal capability level that will trigger maturity and onward progression to the successive stages.
Keywords :
Internet; government data processing; legislation; risk analysis; security of data; DMAIC principles; NIST RMF; National Institute of Standards and Technology; Risk Management Framework; define measure analyse improve and control principles; eGSPM; eGSRM; eGSSM; eGovernment maturity models; eGovernment maturity trigger; eGovernment security risk maturity; eGovernment stage process maturity; eGovernment system security model; legislation; multidimensional risk based approach; security risk mitigation; Capability maturity model; NIST; Process control; Security; NIST RMF; Six Sigma DMAIC; eGovernment; eGovernment Maturity Models;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Privacy, Security, Risk and Trust (PASSAT) and 2011 IEEE Third Inernational Conference on Social Computing (SocialCom), 2011 IEEE Third International Conference on
Conference_Location :
Boston, MA
Print_ISBN :
978-1-4577-1931-8
Type :
conf
DOI :
10.1109/PASSAT/SocialCom.2011.165
Filename :
6113295
Link To Document :
بازگشت