探讨中小企业信息系统安全管理标准的适用性

Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008) Pub Date : 2008-01-07 DOI:10.1109/HICSS.2008.167

Yves Barlette, V. Fomin

{"title":"探讨中小企业信息系统安全管理标准的适用性","authors":"Yves Barlette, V. Fomin","doi":"10.1109/HICSS.2008.167","DOIUrl":null,"url":null,"abstract":"In this paper we examine the adequacy of IS security standards to the needs of SMEs. Using the findings of literature review, we identify general criticism for the security standards. Further, we benchmark the recently published ISO 27001 IS security standard to ISO 9000 standard - a similar standard with a 20 years history - to develop expectations of how the future adoption of the recently introduced ISO 27001 standard can be fostered. We suggest, among other, that the legislative environment can play a crucial role for further growth of security standards adoption.","PeriodicalId":328874,"journal":{"name":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","volume":"22 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-01-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"64","resultStr":"{\"title\":\"Exploring the Suitability of IS Security Management Standards for SMEs\",\"authors\":\"Yves Barlette, V. Fomin\",\"doi\":\"10.1109/HICSS.2008.167\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we examine the adequacy of IS security standards to the needs of SMEs. Using the findings of literature review, we identify general criticism for the security standards. Further, we benchmark the recently published ISO 27001 IS security standard to ISO 9000 standard - a similar standard with a 20 years history - to develop expectations of how the future adoption of the recently introduced ISO 27001 standard can be fostered. We suggest, among other, that the legislative environment can play a crucial role for further growth of security standards adoption.\",\"PeriodicalId\":328874,\"journal\":{\"name\":\"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)\",\"volume\":\"22 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-01-07\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"64\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/HICSS.2008.167\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/HICSS.2008.167","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 64

摘要

在本文中，我们考察了信息系统安全标准是否足以满足中小企业的需求。利用文献综述的发现，我们确定了对安全标准的一般批评。此外，我们将最近公布的ISO 27001资讯保安标准与已有20年历史的类似标准ISO 9000标准进行比较，以建立对如何促进未来采用最近推出的ISO 27001标准的期望。我们建议，除其他外，立法环境可以在安全标准采用的进一步增长中发挥关键作用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Exploring the Suitability of IS Security Management Standards for SMEs

In this paper we examine the adequacy of IS security standards to the needs of SMEs. Using the findings of literature review, we identify general criticism for the security standards. Further, we benchmark the recently published ISO 27001 IS security standard to ISO 9000 standard - a similar standard with a 20 years history - to develop expectations of how the future adoption of the recently introduced ISO 27001 standard can be fostered. We suggest, among other, that the legislative environment can play a crucial role for further growth of security standards adoption.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the 41st Annual Hawaii International Conference on System Sciences (HICSS 2008)

自引率

0.00%

发文量