EEMCS

Home > Publications
Home University of Twente
Education
Research
Prospective Students
Jobs
Publications
Intranet (internal)
 
 Nederlands
 Contact
 Search
 Organisation

EEMCS EPrints Service


2702 A Business Goal Driven Approach for Understanding and Specifying Information Security Requirements
Home Policy Brochure Browse Search User Area Contact Help

Su, X. and Bolzoni, D. and van Eck, P.A.T. (2006) A Business Goal Driven Approach for Understanding and Specifying Information Security Requirements. In: 11th International Workshop on Exploring Modeling Methods in Systems Analysis and Design (EMMSAD2006), 5-9 Jun 2006, Luxembourg. pp. 465-472. Presses Universitaries de Namur. ISBN 2-87037-525-5

This is the latest version of this eprint.

Full text available as:

PDF

92 Kb
Open Access



Official URL: http://arxiv.org/abs/cs.CR/0603129

Exported to Metis

Abstract

In this paper we present an approach for specifying and prioritizing
information security requirements in organizations. It is important
to prioritize security requirements since hundred per cent security is
not achievable and the limited resources available should be directed to
satisfy the most important ones. We propose to link explicitly security
requirements with the organization’s business vision, i.e. to provide business
rationale for security requirements. The rationale is then used as a
basis for comparing the importance of different security requirements.
A conceptual framework is presented, where the relationships between
business vision, critical impact factors and valuable assets (together with
their security requirements) are shown.

Item Type:Conference or Workshop Paper (Full Paper, Talk)
Research Group:EWI-IS: Information Systems, EWI-DIES: Distributed and Embedded Security
Research Program:CTIT-ISTRICE: Integrated Security and Privacy in a Networked World
Research Project:IPID: Integrated Policy-based Intrusion Detection
ID Code:2702
Status:Published
Deposited On:08 June 2006
Refereed:Yes
International:Yes
More Information:statisticsmetis

Available Versions of this Item

Export this item as:

To correct this item please ask your editor

Repository Staff Only: edit this item