A Database System for Effective Utilization of ISO/IEC 27002

Ahmad Iqbal; Jingde Cheng; Daisuke Horie; Yuichi Goto

doi:10.1109/FCST.2009.88

F
FCST
2009
2009 Fourth International Conference on Frontier of Computer Science and Technology
Abstract - A Database System for Effective Utilization of ISO/IEC 27002

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ahmad Iqbal Articles by Daisuke Horie Articles by Yuichi Goto Articles by Jingde Cheng

2009 Fourth International Conference on Frontier of Computer Science and Technology

A Database System for Effective Utilization of ISO/IEC 27002

Shanghai, China

December 17-December 19

ISBN: 978-0-7695-3932-4

	ASCII Text	x
	Ahmad Iqbal, Daisuke Horie, Yuichi Goto, Jingde Cheng, "A Database System for Effective Utilization of ISO/IEC 27002," 2010 Fifth International Conference on Frontier of Computer Science and Technology, pp. 607-612, 2009 Fourth International Conference on Frontier of Computer Science and Technology, 2009.

	BibTex	x
	@article{ 10.1109/FCST.2009.88, author = {Ahmad Iqbal and Daisuke Horie and Yuichi Goto and Jingde Cheng}, title = {A Database System for Effective Utilization of ISO/IEC 27002}, journal ={2010 Fifth International Conference on Frontier of Computer Science and Technology}, volume = {0}, year = {2009}, isbn = {978-0-7695-3932-4}, pages = {607-612}, doi = {http://doi.ieeecomputersociety.org/10.1109/FCST.2009.88}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - 2010 Fifth International Conference on Frontier of Computer Science and Technology TI - A Database System for Effective Utilization of ISO/IEC 27002 SN - 978-0-7695-3932-4 SP607 EP612 A1 - Ahmad Iqbal, A1 - Daisuke Horie, A1 - Yuichi Goto, A1 - Jingde Cheng, PY - 2009 KW - ISO/IEC 27002 KW - information security management KW - information security engineering environment KW - ISMS VL - 0 JA - 2010 Fifth International Conference on Frontier of Computer Science and Technology ER -

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/FCST.2009.88

ISO/IEC 27002 is an international standard for information security management. Although many organizations need to manage their information systems according to ISO/IEC 27002, ISO/IEC 27002 is not convenient for users to retrieve terms, definitions, and security controls and to make documents for information security management because the ISO/IEC 27002 is distributed only in form of booklet or PDF. On the other hand, ISEE, an information security engineering environment, has been proposed to support all tasks in from requirement analysis to maintenance of security facilities of software/information systems. ISEDS, an information security engineering database system, as a main component of ISEE, is planed manage all ISO standards related with information security and their concerning documents. This paper presents a database system for effective utilization of ISO/IEC 27002 that is obtained by adding ISO/IEC 27002 and related documents into ISEDS. The paper analyzes usages of ISO/IEC 27002, gives requirement analysis of the database system, presents a design and construction of the database system, and shows a usage example. The paper also investigates a systematic method to construct databases of ISO standards for information security in ISEDS.

Index Terms:

ISO/IEC 27002, information security management, information security engineering environment, ISMS

Citation:

Ahmad Iqbal, Daisuke Horie, Yuichi Goto, Jingde Cheng, "A Database System for Effective Utilization of ISO/IEC 27002," fcst, pp.607-612, 2009 Fourth International Conference on Frontier of Computer Science and Technology, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.