Automating Information Security Policy Compliance Checking

机译：自动化信息安全策略合规性检查

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Information Security Policies are used for expressing the high level objectives of Security of an enterprise. The different IT assets are configured to protect the enterprise from attackers. The configured assets generate log records as description of the events happening in the system. Published literature focuses on the behavioral aspects of the users in complying with the policies. This paper presents a novel idea of checking the compliance with Information Security Policies from the log records. The paper presents a formal description of compliance and goes on to describe the representation of the different entities like Policies, Rules, Events and Logs for the automatic Compliance checker.

机译：信息安全策略用于表达企业安全的高级目标。配置了不同的IT资产以保护企业免受攻击者的侵害。配置的资产生成日志记录，作为对系统中发生的事件的描述。公开的文献着重于用户遵守政策的行为方面。本文提出了一种从日志记录中检查是否符合信息安全策略的想法。本文提供了对合规性的正式描述，并继续描述了自动合规性检查器的不同实体（如策略，规则，事件和日志）的表示形式。

著录项

来源
《2018 Fifth International Conference on Emerging Applications of Information Technology》|2018年|1-4|共4页
会议地点 Kolkata(IN)
作者
Debashis Mandal; Chandan Mazumdar;
展开▼
作者单位

Centre for Distributed Computing, Jadavpur University, Kolkata, INDIA;

Centre for Distributed Computing, Jadavpur University, Kolkata, INDIA;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Organizations; Tools; XML; Automation; Password;

机译：组织;工具; XML;自动化;密码;;

相似文献

外文文献
中文文献
专利

1. Redmond enlists security vendors to automate policy compliance [J] . ELLEN MESSMER, JOHN FONTANA Network world . 2004,第20期

机译：雷德蒙德（Redmond）邀请安全厂商自动化策略合规
2. Automated Information Transformation for Automated Regulatory Compliance Checking in Construction [J] . Zhang Jiansong, El-Gohary Nora M. Journal of Computing in Civil Engineering . 2015,第4期

机译：自动化信息转换，用于施工中的自动法规遵从性检查
3. Loose coupling of GIS and BIM data models for automated compliance checking against zoning codes [J] . Altintas Yelin Demir, Ilal Mustafa Emre Automation in construction . 2021,第Auga期

机译：GIS和BIM数据模型的松散耦合，用于自动合规性检查分区码
4. Automating Information Security Policy Compliance Checking [C] . Debashis Mandal, Chandan Mazumdar International Conference on Emerging Applications of Information Technology . 2018

机译：自动化信息安全策略合规性检查
5. UNIX Administrator Information Security Policy Compliance: The Influence of a Focused Seta Workshop and Interactive Security Challenges on Heuristics and Biases [D] . McConnell, John Palmer, Jr. 2020

机译：UNIX管理员信息安全策略合规性：对机启发式和偏见的互动安全挑战的影响
6. An Integrative Behavioral Model of Information Security Policy Compliance [O] . Sang Hoon Kim, Kyung Hoon Yang, Sunyoung Park -1

机译：信息安全策略遵从的集成行为模型
7. Checking Security Policy Compliance [O] . Gowadia, Vaibhav, Farkas, Csilla, Kudo, Michiharu 2008

机译：检查安全策略合规性
8. Security Content Automation Program (SCAP): Automating Compliance Checking, Vulnerability Management, and Security Measurement. (Draft) [R] . Quinn, S. D., Mell, P., Kent, K. 2006

机译：安全内容自动化程序（sCap）：自动执行合规性检查，漏洞管理和安全性测量。（草案）

Automating Information Security Policy Compliance Checking

摘要

著录项

相似文献

相关主题

期刊订阅