{"title":"马来西亚高等教育机构将渗透测试整合到信息安全框架的研究","authors":"C. M. Kang, P. S. JosephNg, K. Issa","doi":"10.1109/ISMSC.2015.7594045","DOIUrl":null,"url":null,"abstract":"With the rapid development of information technology, hackers are provided powerful tools and therefore ensuring the security of the information is becoming a complex task. Using hacking tools and techniques also known as penetration testing or ethical hacking can contribute to mitigate the security risks. However, due to the misinformation on penetration testing, some managers refused to adopt this arm to protect their information against hackers. As a result, in Malaysian Higher Education Institutions domain, the number of victims of hackers keeps increasing considerably. The research objectives are to enable a paradigm shift on higher management level on penetration testing as part of the essential IT security components. To demonstrate how penetration testing contributes to improve the security. To provide security managers and top managers a positive vision of pen-testing through a revised security framework based on an existing one. This research will be carried out qualitatively and quantitatively, and its output will be based on numeric analysis, case study, survey and literature reviews.","PeriodicalId":407600,"journal":{"name":"2015 International Symposium on Mathematical Sciences and Computing Research (iSMSC)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-05-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"16","resultStr":"{\"title\":\"A study on integrating penetration testing into the information security framework for Malaysian higher education institutions\",\"authors\":\"C. M. Kang, P. S. JosephNg, K. Issa\",\"doi\":\"10.1109/ISMSC.2015.7594045\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the rapid development of information technology, hackers are provided powerful tools and therefore ensuring the security of the information is becoming a complex task. Using hacking tools and techniques also known as penetration testing or ethical hacking can contribute to mitigate the security risks. However, due to the misinformation on penetration testing, some managers refused to adopt this arm to protect their information against hackers. As a result, in Malaysian Higher Education Institutions domain, the number of victims of hackers keeps increasing considerably. The research objectives are to enable a paradigm shift on higher management level on penetration testing as part of the essential IT security components. To demonstrate how penetration testing contributes to improve the security. To provide security managers and top managers a positive vision of pen-testing through a revised security framework based on an existing one. This research will be carried out qualitatively and quantitatively, and its output will be based on numeric analysis, case study, survey and literature reviews.\",\"PeriodicalId\":407600,\"journal\":{\"name\":\"2015 International Symposium on Mathematical Sciences and Computing Research (iSMSC)\",\"volume\":\"1 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-05-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"16\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 International Symposium on Mathematical Sciences and Computing Research (iSMSC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISMSC.2015.7594045\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Symposium on Mathematical Sciences and Computing Research (iSMSC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISMSC.2015.7594045","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
A study on integrating penetration testing into the information security framework for Malaysian higher education institutions
With the rapid development of information technology, hackers are provided powerful tools and therefore ensuring the security of the information is becoming a complex task. Using hacking tools and techniques also known as penetration testing or ethical hacking can contribute to mitigate the security risks. However, due to the misinformation on penetration testing, some managers refused to adopt this arm to protect their information against hackers. As a result, in Malaysian Higher Education Institutions domain, the number of victims of hackers keeps increasing considerably. The research objectives are to enable a paradigm shift on higher management level on penetration testing as part of the essential IT security components. To demonstrate how penetration testing contributes to improve the security. To provide security managers and top managers a positive vision of pen-testing through a revised security framework based on an existing one. This research will be carried out qualitatively and quantitatively, and its output will be based on numeric analysis, case study, survey and literature reviews.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
