Title :
Ontology-Based Decision Support for Information Security Risk Management
Author :
Ekelhart, Andreas ; Fenz, Stefan ; Neubauer, Thomas
Author_Institution :
Secure Bus. Austria, Vienna
Abstract :
As e-Business and e-Commerce applications are increasingly exposed to a variety of information security threats, corporate decision makers are increasingly forced to pay attention to security issues. Risk management provides an effective approach for measuring the security but existing risk management approaches come with major shortcomings such as the demand for very detailed knowledge about the IT security domain and the actual company environment. This paper presents the implementation of the AURUM methodology into a software solution which addresses the identified shortcomings of existing information security risk management software solutions. Thereby, the presented approach supports decision makers in risk assessment, risk mitigation, and safeguard evaluation.
Keywords :
DP management; decision making; electronic commerce; ontologies (artificial intelligence); risk management; security of data; IT security domain; decision making; e-business; e-commerce application; information security risk management; information security threat; ontology-based decision support; software solution; Companies; Concrete; Costs; Guidelines; ISO standards; Information security; Investments; Ontologies; Risk management; Standards organizations; Decision Support; Ontologies; Risk Management; Security;
Conference_Titel :
Systems, 2009. ICONS '09. Fourth International Conference on
Conference_Location :
Gosier, Guadeloupe
Print_ISBN :
978-1-4244-3469-5
Electronic_ISBN :
978-0-7695-3551-7
DOI :
10.1109/ICONS.2009.8
