开发企业安全体系结构的路线图

2009 International Conference for Internet Technology and Secured Transactions, (ICITST) Pub Date : 2009-11-01 DOI:10.1109/ICITST.2009.5402639

Maryam Tahajod, Azadeh Iranmehr, Mohammad Reza Darajeh

{"title":"开发企业安全体系结构的路线图","authors":"Maryam Tahajod, Azadeh Iranmehr, Mohammad Reza Darajeh","doi":"10.1109/ICITST.2009.5402639","DOIUrl":null,"url":null,"abstract":"Generally speaking, there is no single solution for security architecture in each enterprise; however, there are common elements of security architecture that enterprises should consider when developing their security plan. Security services provide confidentiality, integrity, and availability services for the platform. This paper describes a way to map these security services into overall enterprise security architecture. We demonstrate a framework for understanding disparate design and process considerations; to organize architecture and actions toward improving enterprise security. The security architecture roadmap depicts an approach to map the enterprise's goals to a logical view for security, which is set of security policy and standards, security architecture, and risk management domains. The decisions in the logical layer drive the security processes through design time to run time.","PeriodicalId":251169,"journal":{"name":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","volume":"56 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"A roadmap to develop enterprise security architecture\",\"authors\":\"Maryam Tahajod, Azadeh Iranmehr, Mohammad Reza Darajeh\",\"doi\":\"10.1109/ICITST.2009.5402639\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Generally speaking, there is no single solution for security architecture in each enterprise; however, there are common elements of security architecture that enterprises should consider when developing their security plan. Security services provide confidentiality, integrity, and availability services for the platform. This paper describes a way to map these security services into overall enterprise security architecture. We demonstrate a framework for understanding disparate design and process considerations; to organize architecture and actions toward improving enterprise security. The security architecture roadmap depicts an approach to map the enterprise's goals to a logical view for security, which is set of security policy and standards, security architecture, and risk management domains. The decisions in the logical layer drive the security processes through design time to run time.\",\"PeriodicalId\":251169,\"journal\":{\"name\":\"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)\",\"volume\":\"56 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2009-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICITST.2009.5402639\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 International Conference for Internet Technology and Secured Transactions, (ICITST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICITST.2009.5402639","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

摘要

一般来说，在每个企业中都没有针对安全架构的单一解决方案;但是，企业在制定安全计划时应该考虑安全体系结构的一些共同元素。安全服务为平台提供机密性、完整性和可用性服务。本文描述了一种将这些安全服务映射到整个企业安全体系结构中的方法。我们演示了一个框架，用于理解不同的设计和流程考虑;组织架构和行动以改进企业安全。安全体系结构路线图描述了一种将企业目标映射到安全逻辑视图的方法，安全逻辑视图是一组安全策略和标准、安全体系结构和风险管理域。逻辑层中的决策从设计时到运行时驱动安全流程。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A roadmap to develop enterprise security architecture

Generally speaking, there is no single solution for security architecture in each enterprise; however, there are common elements of security architecture that enterprises should consider when developing their security plan. Security services provide confidentiality, integrity, and availability services for the platform. This paper describes a way to map these security services into overall enterprise security architecture. We demonstrate a framework for understanding disparate design and process considerations; to organize architecture and actions toward improving enterprise security. The security architecture roadmap depicts an approach to map the enterprise's goals to a logical view for security, which is set of security policy and standards, security architecture, and risk management domains. The decisions in the logical layer drive the security processes through design time to run time.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2009 International Conference for Internet Technology and Secured Transactions, (ICITST)

自引率

0.00%

发文量