Sciweavers

SEC
1997

A formal model to aid documenting and harmonizing of information security requirements

13 years 5 months ago
A formal model to aid documenting and harmonizing of information security requirements
A formal top down model shall be presented to aid documentation and harmonization of information security requirements. The model formalizes layered development of inn security, where top level abstract objectives, strategies and policies are step by step re ned into concrete protection measure speci cations. The model consists of static and dynamic parts, where static part refers to the organization, and dynamic part to the re nement of requirements. Major functions are horizontal and vertical harmofunctions used to transfer requirement into lower levels of abstraction, and to identify requirements of secure inter-operation of systems on each layer. Application of the model then consists of two parts: speci cation of the organization and speci cation of requirement harmonization functions. Keywords Information security development, harmonization of information security, organizational modeling
Jussipekka Leiwo, Yuliang Zheng
Added 01 Nov 2010
Updated 01 Nov 2010
Type Conference
Year 1997
Where SEC
Authors Jussipekka Leiwo, Yuliang Zheng
Comments (0)