{"title":"以知识为中心的资讯保安","authors":"Walter S. L. Fung, R. Fung","doi":"10.1109/SECTECH.2008.9","DOIUrl":null,"url":null,"abstract":"Increasing number of enterprises consider information security (InfoSec) as a key success factor whereas threats can originate from any part of the world over internet. Incidents such as 11th September of 2001, and hacker horror stories, awaken enterprises they should reshape their InfoSec policies. Traditionally InfoSec relies heavily on technology, investing large amount of money on software and hardware. In the last decade process based information security management system (ISMS) such as ISO27001 has emerged. Many organizations since then have adopted such ISMS. KM is another management discipline enterprises employ, with aim to foster a more effective management of knowledge creation for innovations. This paper proposes a research initiative to integrate KM and InfoSec together into a knowledge-centric InfoSec (KCIS) System. Organizations should be able to improve their InfoSec maturity level, by adopting KCIS in phases.","PeriodicalId":377461,"journal":{"name":"2008 International Conference on Security Technology","volume":"9 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-12-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Knowledge-Centric Information Security\",\"authors\":\"Walter S. L. Fung, R. Fung\",\"doi\":\"10.1109/SECTECH.2008.9\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Increasing number of enterprises consider information security (InfoSec) as a key success factor whereas threats can originate from any part of the world over internet. Incidents such as 11th September of 2001, and hacker horror stories, awaken enterprises they should reshape their InfoSec policies. Traditionally InfoSec relies heavily on technology, investing large amount of money on software and hardware. In the last decade process based information security management system (ISMS) such as ISO27001 has emerged. Many organizations since then have adopted such ISMS. KM is another management discipline enterprises employ, with aim to foster a more effective management of knowledge creation for innovations. This paper proposes a research initiative to integrate KM and InfoSec together into a knowledge-centric InfoSec (KCIS) System. Organizations should be able to improve their InfoSec maturity level, by adopting KCIS in phases.\",\"PeriodicalId\":377461,\"journal\":{\"name\":\"2008 International Conference on Security Technology\",\"volume\":\"9 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-12-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 International Conference on Security Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SECTECH.2008.9\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 International Conference on Security Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SECTECH.2008.9","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Increasing number of enterprises consider information security (InfoSec) as a key success factor whereas threats can originate from any part of the world over internet. Incidents such as 11th September of 2001, and hacker horror stories, awaken enterprises they should reshape their InfoSec policies. Traditionally InfoSec relies heavily on technology, investing large amount of money on software and hardware. In the last decade process based information security management system (ISMS) such as ISO27001 has emerged. Many organizations since then have adopted such ISMS. KM is another management discipline enterprises employ, with aim to foster a more effective management of knowledge creation for innovations. This paper proposes a research initiative to integrate KM and InfoSec together into a knowledge-centric InfoSec (KCIS) System. Organizations should be able to improve their InfoSec maturity level, by adopting KCIS in phases.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
