Méta modèle de la sécurité des systèmes d'information : enrichissement par le contexte

Abstract : Companies are increasingly confronted with the problems caused by their reliance on information systems. They are thus forced to implement a process of security requirements derivation starting from risks analysis. This process requires a thorough analysis of the organizational context. The purpose of this article is to propose a security meta model enriched by an ontology of the context. To this end, we propose (i) the development of a context ontology based on the ISO / IEC 27000: 2018 security standard,(ii) an approach to enrich the security meta model with context ontology. This enrichment is carried out in two phases. The first is related to the identification and extraction of elements of the context of the enterprise. The second concerns the determination of the security criteria of the assets of the organization to be protected and (iii) the application to a real case which also serves as a first step in the validation of our approach.
Document type :
Conference papers
Complete list of metadatas

Cited literature [30 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-02283829
Contributor : Médiathèque Télécom Sudparis & Institut Mines-Télécom Business School <>
Submitted on : Friday, September 13, 2019 - 3:26:50 PM
Last modification on : Wednesday, February 12, 2020 - 2:50:11 PM
Long-term archiving on: Saturday, February 8, 2020 - 5:43:04 PM

File

INFORSID2018Akoka.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-02283829, version 1

Citation

Jacky Akoka, Nabil Laoufi, Nadira Lammari. Méta modèle de la sécurité des systèmes d'information : enrichissement par le contexte. INFORSID 2018 : 36e congrès INFormatique des ORganisation et Systèmes d'Information et de Décision, May 2018, Nantes, France. pp.63 - 87. ⟨hal-02283829⟩

Share

Metrics

Record views

44

Files downloads

34