VGTU talpykla > Fundamentinių mokslų fakultetas / Faculty of Fundamental Sciences > Moksliniai straipsniai / Research articles >

Lietuvių   English
Please use this identifier to cite or link to this item:

Title: Security ontology for adaptive mapping of security standards
Authors: Ramanauskaitė, Simona
Olifer, Dmitrij
Goranin, Nikolaj
Čenys, Antanas
Keywords: Security ontology
Security standards
Adaptive mapping
Issue Date: 2013
Publisher: Agora University Editing House
Citation: Ramanauskaitė, S.; Olifer, D.; Goranin, N.; Čenys, A. 2013. Security ontology for adaptive mapping of security standards, International Journal of Computers, Communications & Control (IJCCC) 8(6): 813-825
Series/Report no.: Vol. 8; iss. 6 (2013)
Abstract: Adoption of security standards has the capability of improving the security level in an organization as well as to provide additional benefits and possibilities to the organization. However mapping of used standards has to be done when more than one security standard is employed in order to prevent redundant activities, not optimal resource management and unnecessary outlays. Employment of security ontology to map different standards can reduce the mapping complexity however the choice of security ontology is of high importance and there are no analyses on security ontology suitability for adaptive standards mapping. In this paper we analyze existing security ontologies by comparing their general properties, OntoMetric factors and ability to cover different security standards. As none of the analysed security ontologies were able to cover more than 1/3 of security standards, we proposed a new security ontology, which increased coverage of security standards compared to the existing ontologies and has a better branching and depth properties for ontology visualization purposes. During this research we mapped 4 security standards (ISO 27001, PCI DSS, ISSA 5173 and NISTIR 7621) to the new security ontology, therefore this ontology and mapping data can be used for adaptive mapping of any set of these security standards to optimize us age of multiple security standards in an organization.
ISSN: 1841-9836
Appears in Collections:Moksliniai straipsniai / Research articles

Files in This Item:

File Description SizeFormat
ijccc_Vol8_Iss6_813-825_ramanauskaite.pdf933.71 kBAdobe PDFView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.


Valid XHTML 1.0! DSpace Software Copyright © 2002-2010  Duraspace - Feedback