根据ISO/IEC 27001的资讯科技保安要求，评估电子服务

2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS) Pub Date : 2016-10-01 DOI:10.1109/ITMQIS.2016.7751921

I. Livshitz, Kseniya A. Nikiforova, P. Lontsikh, Viktoria A. Karaseva

{"title":"根据ISO/IEC 27001的资讯科技保安要求，评估电子服务","authors":"I. Livshitz, Kseniya A. Nikiforova, P. Lontsikh, Viktoria A. Karaseva","doi":"10.1109/ITMQIS.2016.7751921","DOIUrl":null,"url":null,"abstract":"This publication discusses the problem of compliance evaluation for electronic services (ES). The relevance of this publication caused certain problems in the ES organization, formation of international confidence in the ES provided, as well as a wide range of approaches to ensure IT-security. It is noted that along with well-known standards set by the various national regulators, well-known term for the purpose of forming an objective and independent evidence of the ES credibility can provide international standards ISO 27001 series. Methodical basis of the ISO 27001 series operates with an objective and independent assessment of the many IT-security metrics for the quantitative estimation of the IT-security level for ES. The obtained results can find application in the provision of international confidence for ES services through objective and independent IT-security evaluation.","PeriodicalId":330739,"journal":{"name":"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)","volume":"63 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"The evaluation of the electronic services with accordance to IT-security requirements based on ISO/IEC 27001\",\"authors\":\"I. Livshitz, Kseniya A. Nikiforova, P. Lontsikh, Viktoria A. Karaseva\",\"doi\":\"10.1109/ITMQIS.2016.7751921\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This publication discusses the problem of compliance evaluation for electronic services (ES). The relevance of this publication caused certain problems in the ES organization, formation of international confidence in the ES provided, as well as a wide range of approaches to ensure IT-security. It is noted that along with well-known standards set by the various national regulators, well-known term for the purpose of forming an objective and independent evidence of the ES credibility can provide international standards ISO 27001 series. Methodical basis of the ISO 27001 series operates with an objective and independent assessment of the many IT-security metrics for the quantitative estimation of the IT-security level for ES. The obtained results can find application in the provision of international confidence for ES services through objective and independent IT-security evaluation.\",\"PeriodicalId\":330739,\"journal\":{\"name\":\"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)\",\"volume\":\"63 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-10-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ITMQIS.2016.7751921\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITMQIS.2016.7751921","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

本出版物讨论了电子服务(ES)的合规性评估问题。该出版物的相关性在ES组织中引起了某些问题，形成了对所提供的ES的国际信心，以及确保it安全的广泛方法。值得注意的是，随着各国家监管机构制定的知名标准，知名术语为形成客观、独立的ES可信度证据提供了ISO 27001系列国际标准。ISO 27001系列的方法基础是对许多it安全指标进行客观和独立的评估，以定量估计ES的it安全水平。所获得的结果可以通过客观和独立的it安全评估，在为ES服务提供国际信任方面找到应用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

The evaluation of the electronic services with accordance to IT-security requirements based on ISO/IEC 27001

This publication discusses the problem of compliance evaluation for electronic services (ES). The relevance of this publication caused certain problems in the ES organization, formation of international confidence in the ES provided, as well as a wide range of approaches to ensure IT-security. It is noted that along with well-known standards set by the various national regulators, well-known term for the purpose of forming an objective and independent evidence of the ES credibility can provide international standards ISO 27001 series. Methodical basis of the ISO 27001 series operates with an objective and independent assessment of the many IT-security metrics for the quantitative estimation of the IT-security level for ES. The obtained results can find application in the provision of international confidence for ES services through objective and independent IT-security evaluation.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2016 IEEE Conference on Quality Management, Transport and Information Security, Information Technologies (IT&MQ&IS)

自引率

0.00%

发文量