In 2014, we launched our open-access repository which offers full text access to conference proceedings from many of our events including the INC and HAISA series. These papers are free to access and distribute (subject to citing the source).
South African Information Security Multi-Conference (SAISMC 2010)
Title: UNIFYING ISO SECURITY STANDARDS PRACTICES INTO A SINGLE SECURITY FRAMEWORK
Author(s): Aggeliki Tsohou, Spyros Kokolakis, Costas Lambrinoudakis, Stefanos Gritzalis
Keywords: Standardization, International Organization for Standardization, Security Management, ISMS
Abstract: Compliance to standards is quite important for numerous reasons, including interoperability, conformity assessment etc. However, even though recent surveys indicate that international security standards do gain acceptance and that a continuously increasing number of organizations adopt them, still the majority do not know them or do not fully implement them. In this paper we facilitate the awareness of security practitioners on ISO security standards and we propose a security framework that is based on them. In order to explain the different layers of the framework and illustrate its applicability we have used as a case study a Payroll and Pensioner Information System.
Download count: 2665
How to get this paper:
PDF copy of this paper is free to download. You may distribute this copy providing you cite this page as the source.