基于面向服务架构的智能企业信息安全体系结构

2008 International Seminar on Future Information Technology and Management Engineering Pub Date : 2008-11-20 DOI:10.1109/FITME.2008.30

Jianguang Sun, Yan Chen

{"title":"基于面向服务架构的智能企业信息安全体系结构","authors":"Jianguang Sun, Yan Chen","doi":"10.1109/FITME.2008.30","DOIUrl":null,"url":null,"abstract":"Traditionally, researches on information security mainly focus on the different sub-disciplines such as network security; application security; grid security, etc., but not much emphasis is focused on integrated enterprise information security architecture. The paper proposed a layered and service-oriented intelligent enterprise information security architecture, helping to build a model to manage the enterprise information security activities systematically, intelligently and incorporate with the overall information management activities. The authors also propose to define the information security and risk control services based on SOA architecture referring to ISO/IEC 27002 standard and industrypsilas best practices. It is concluded that these will enhance the effectiveness of enterprise information security management and risk control activities.","PeriodicalId":218182,"journal":{"name":"2008 International Seminar on Future Information Technology and Management Engineering","volume":"53 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-11-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"13","resultStr":"{\"title\":\"Intelligent Enterprise Information Security Architecture Based on Service Oriented Architecture\",\"authors\":\"Jianguang Sun, Yan Chen\",\"doi\":\"10.1109/FITME.2008.30\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Traditionally, researches on information security mainly focus on the different sub-disciplines such as network security; application security; grid security, etc., but not much emphasis is focused on integrated enterprise information security architecture. The paper proposed a layered and service-oriented intelligent enterprise information security architecture, helping to build a model to manage the enterprise information security activities systematically, intelligently and incorporate with the overall information management activities. The authors also propose to define the information security and risk control services based on SOA architecture referring to ISO/IEC 27002 standard and industrypsilas best practices. It is concluded that these will enhance the effectiveness of enterprise information security management and risk control activities.\",\"PeriodicalId\":218182,\"journal\":{\"name\":\"2008 International Seminar on Future Information Technology and Management Engineering\",\"volume\":\"53 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-11-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"13\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 International Seminar on Future Information Technology and Management Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/FITME.2008.30\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 International Seminar on Future Information Technology and Management Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/FITME.2008.30","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 13

摘要

传统上，信息安全的研究主要集中在不同的分支学科，如网络安全;应用程序安全;网格安全等，但对集成的企业信息安全体系结构关注不多。本文提出了一种分层、面向服务的智能企业信息安全体系结构，构建了一个系统、智能地管理企业信息安全活动并与整体信息管理活动相结合的模型。作者还建议参照ISO/IEC 27002标准和行业最佳实践，定义基于SOA体系结构的信息安全和风险控制服务。结论是，这些将增强企业信息安全管理和风险控制活动的有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Intelligent Enterprise Information Security Architecture Based on Service Oriented Architecture

Traditionally, researches on information security mainly focus on the different sub-disciplines such as network security; application security; grid security, etc., but not much emphasis is focused on integrated enterprise information security architecture. The paper proposed a layered and service-oriented intelligent enterprise information security architecture, helping to build a model to manage the enterprise information security activities systematically, intelligently and incorporate with the overall information management activities. The authors also propose to define the information security and risk control services based on SOA architecture referring to ISO/IEC 27002 standard and industrypsilas best practices. It is concluded that these will enhance the effectiveness of enterprise information security management and risk control activities.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2008 International Seminar on Future Information Technology and Management Engineering

自引率

0.00%

发文量