Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Addressing Dynamic Issues in Information Security Management
KTH, School of ICT, Electronic Systems.
Stockholm University, Faculty of Social Sciences, Department of Computer and Systems Sciences.
Stockholm University, Faculty of Social Sciences, Department of Computer and Systems Sciences.
ICT/Materialfysik.
2011 (English)In: Information Management & Computer Security, ISSN 0968-5227, Vol. 19, no 1, 5-24 p.Article in journal (Refereed) Published
Abstract [sv]

Ett ramverk för behandling av osäkerhet inom ledningssystem för informationssäkerhet presenteras. Ramverket baseras på teorier från corporate finance. En fallstudie visar hur ramverket kan appliceras.

Abstract [en]

The paper addresses three main problems resulting from uncertainty in information security management: i)dynamically changing security requirements of an organization ii) externalities caused by a security system and iii)obsolete evaluation of security concerns. A framework based on options reasoning borrowed from corporate finance is proposed and adapted to evaluation of security architecture and decision-making for handling these issues at organizational level. The adaptation as methodology is demonstrated by a large case study validating its efficacy.

Place, publisher, year, edition, pages
Emerald Group Publishing Limited, 2011. Vol. 19, no 1, 5-24 p.
Keyword [en]
Dynamic Security Requirement Management, IT Security Externalities, Re-evaluation of IT Products
Keyword [sv]
ITsäkerhetskrav, evaluering av ITsäkerhet
National Category
Information Systems
Research subject
Computer and Systems Sciences
Identifiers
URN: urn:nbn:se:su:diva-67096DOI: 10.1108/09685221111115836OAI: oai:DiVA.org:su-67096DiVA: diva2:469521
Available from: 2011-12-26 Created: 2011-12-26 Last updated: 2011-12-27Bibliographically approved

Open Access in DiVA

No full text

Other links

Publisher's full text

Search in DiVA

By author/editor
Magnusson, ChristerYngström, Louise
By organisation
Department of Computer and Systems Sciences
In the same journal
Information Management & Computer Security
Information Systems

Search outside of DiVA

GoogleGoogle Scholar

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 2808 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf