Title :
ESRML: a markup language for enterprise security requirement specification
Author :
Roy, Jhulan ; Barik, Mridul Sankar ; Mazumdar, Chandan
Author_Institution :
Oracle Corp., Hyderabad, India
Abstract :
Every enterprise needs to monitor its computing system for possible unauthorized intrusion and other attacks and these activities should be part of its daily routine to safeguard enterprise information system. The ISO 17799 best practices for information security management specifically addresses these issues and provides detailed guidelines on how a secure management framework should be implemented. To capture the security requirements of an organization properly, a customized information security specification language is needed. This paper presents an XML based structured language ESRML (enterprise security requirement markup language) for specifying enterprise information security requirement conforming the ISO 17799 standard.
Keywords :
ISO standards; XML; authorisation; business communication; computer network management; intranets; specification languages; telecommunication security; ESRML; ISO 17799; XML based structured language; computing system monitoring; enterprise security requirement markup language; information security management; markup language; safeguard enterprise information system; specification language; unauthorized intrusion; Best practices; Guidelines; ISO standards; Information management; Information security; Management information systems; Markup languages; Monitoring; Specification languages; XML;
Conference_Titel :
India Annual Conference, 2004. Proceedings of the IEEE INDICON 2004. First
Print_ISBN :
0-7803-8909-3
DOI :
10.1109/INDICO.2004.1497807
