评估组织中的信息安全:最小距离法

2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON) Pub Date : 2017-10-20 DOI:10.1109/INTERCON.2017.8079676

F. D. Felipe, E. Acevedo, M. Sánchez

{"title":"评估组织中的信息安全:最小距离法","authors":"F. D. Felipe, E. Acevedo, M. Sánchez","doi":"10.1109/INTERCON.2017.8079676","DOIUrl":null,"url":null,"abstract":"This work presents a methodology for evaluating informatics security in any kind of organization. We use the ISO-27002/2013 standard and the Mexican equivalent NMX-I27002.NYCE-2009 as basis to follow. The standards stablish fourteen controls: human factors, technological, process, and legal controls. The organization must choose adequate controls for it, then It can use the ”Minimal Distance Method to the ideal” to evaluate its Informatics Security. The method allows customize an ideal point for n parameters to evaluate and each organization can define its own ideal point to reach.","PeriodicalId":229086,"journal":{"name":"2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON)","volume":"22 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-10-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Evaluating informatics security in an organization: The minimal distance method\",\"authors\":\"F. D. Felipe, E. Acevedo, M. Sánchez\",\"doi\":\"10.1109/INTERCON.2017.8079676\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"This work presents a methodology for evaluating informatics security in any kind of organization. We use the ISO-27002/2013 standard and the Mexican equivalent NMX-I27002.NYCE-2009 as basis to follow. The standards stablish fourteen controls: human factors, technological, process, and legal controls. The organization must choose adequate controls for it, then It can use the ”Minimal Distance Method to the ideal” to evaluate its Informatics Security. The method allows customize an ideal point for n parameters to evaluate and each organization can define its own ideal point to reach.\",\"PeriodicalId\":229086,\"journal\":{\"name\":\"2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON)\",\"volume\":\"22 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2017-10-20\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/INTERCON.2017.8079676\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/INTERCON.2017.8079676","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 2

摘要

这项工作提出了一种在任何类型的组织中评估信息安全的方法。我们使用ISO-27002/2013标准和墨西哥等效的NMX-I27002。以NYCE-2009为参照。这些标准建立了14项控制:人为因素、技术、过程和法律控制。组织必须选择适当的控制措施，然后可以使用“到理想的最小距离法”来评估其信息安全。该方法允许为n个参数定制一个理想点来评估，每个组织可以定义自己的理想点来达到。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Evaluating informatics security in an organization: The minimal distance method

This work presents a methodology for evaluating informatics security in any kind of organization. We use the ISO-27002/2013 standard and the Mexican equivalent NMX-I27002.NYCE-2009 as basis to follow. The standards stablish fourteen controls: human factors, technological, process, and legal controls. The organization must choose adequate controls for it, then It can use the ”Minimal Distance Method to the ideal” to evaluate its Informatics Security. The method allows customize an ideal point for n parameters to evaluate and each organization can define its own ideal point to reach.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2017 IEEE XXIV International Conference on Electronics, Electrical Engineering and Computing (INTERCON)

自引率

0.00%

发文量