Framwork for Information Security Standards Storage and Retrieval using Security Patterns

被引:0
作者
Ruamjinda, Poramaporn [1 ]
Prompoon, Nakornthip [1 ]
机构
[1] Chulalongkorn Univ, Dept Software Engn, Bangkok, Thailand
来源
PROCEEDINGS OF 2013 IEEE 4TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING AND SERVICE SCIENCE (ICSESS) | 2012年
关键词
Information Retrieval; Information Security; Security Pattern; Security Standard;
D O I
暂无
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
Establishing an information security policy that aligns with the business strategy of the organization usually depends on the stakeholders' expertise and experience. Due to the human factor constraint, this may lead to an incomplete and unclear policy. This research proposes a framework for the storage and retrieval of information security standards using information retrieval principles and security patterns based on security patterns, keyword search and the relationship among security patterns. The vector space model is used to compute the similarity between user queries and parts of security standard documents to present results relevant to the users' needs. Recall, precision and F-measure are used to evaluate the efficiency of the proposed methods.
引用
收藏
页码:296 / 300
页数:5
相关论文
共 8 条
  • [1] ANDREA DE LUCIA F.F., 2007, ACM T SOFTWARE ENG M
  • [2] (IEC) I.O.f.S.I.a.I.E.C., 270012005 ISOIEC
  • [3] mattord M.E.W.a.H.J., 2003, PRINCIPLES INFORM SE
  • [4] Munawar Hafiz P.A., 2005, ORG SECURITY PATTERN
  • [5] Nobukazu YOSHIOKA H.W., 2008, ACM 2007 ART PROGR I, V2008, P35
  • [6] Ribeiro-Neto R.B.-Y.a.B., 2010, MODERN INFORM RETRIE
  • [7] Sommerlad Security Patterns, 2005, INTEGRATING SECURITY
  • [8] Supaporn K, DEFINING SECURITY RE, P2550
1