|
|
|
|
System health monitoring using a novel method: Security unified process
|
|
|
|
|
|
|
|
نویسنده
|
shameli-sendi a. ,jabbarifar m. ,dagenais m. ,shajari m.
|
|
منبع
|
journal of computer networks and communications - 2012 - شماره : 0
|
|
چکیده
|
Iterative and incremental mechanisms are not usually considered in existing approaches for information security management system (isms). in this paper,we propose sup (security unified process) as a unified process to implement a successful and high-quality isms. a disciplined approach can be provided by sup to assign tasks and responsibilities within an organization. the sup architecture comprises static and dynamic dimensions; the static dimension,or disciplines,includes business modeling,assets,security policy,implementation,configuration and change management,and project management. the dynamic dimension,or phases,contains inception,analysis and design,construction,and monitoring. risk assessment is a major part of the isms process. in sup,we present a risk assessment model,which uses a fuzzy expert system to assess risks in organization. since,the classification of assets is an important aspect of risk management and ensures that effective protection occurs,a security cube is proposed to identify organization assets as an asset classification model. the proposed model leads us to have an offline system health monitoring tool that is really a critical need in any organization. © copyright 2012 alireza shameli-sendi et al.
|
|
|
|
|
آدرس
|
départment de genie informatique et génie logiciel,école polytechnique de montréal,p.o. box 6079,montreal, Canada, départment de genie informatique et génie logiciel,école polytechnique de montréal,p.o. box 6079,montreal, Canada, départment de genie informatique et génie logiciel,école polytechnique de montréal,p.o. box 6079,montreal, Canada, amirkabir university of technology, ایران
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|