Change search
ReferencesLink to record
Permanent link

Direct link
Informationssäkerhet i arkitekturbeskrivningar: En studie i hur säkerhetsfunktioner kan beskrivas med hjälp av vyer
Linköping University, Department of Computer and Information Science, Database and information techniques. Linköping University, The Institute of Technology.
2012 (Swedish)Independent thesis Advanced level (degree of Master (Two Years)), 20 credits / 30 HE creditsStudent thesis
Abstract [en]

Information security is an essential part of all information systems; especially in large organizations and companies dealing with classified material. Every large information system has an architecture that includes many parts that together form an Enterprise Architecture. The aim of this thesis is to study how to describe several security functions in an Enterprise Architecture and also how to ensure accountability between requirements and the implementation of the security functions. The description is for stakeholders on a conceptual level rather than a technical level. The study has been carried out by comparing the theoretical framework that has been formed by a study of the literature, and the empirical framework that has been formed by a group discussion and interviews with Information Security Consultants from Combitech AB. The process of the study was to obtain a theoretical background about Enterprise Architectures and then generate prototypes that could be tested in the interviews. The tests gave suggestions regarding how to change the prototypes to find the optimal way to describe security functions on a conceptual level.

The final result of this study is to use integrated views for each security function. The integrated view should include: an identifier, a brief description of the security function, the requirements and a picture or use case. For the accountability, the requirements are numbered and displayed in the picture, in this way the stakeholder can see how the requirements are fulfilled.

Place, publisher, year, edition, pages
2012. , 54 p.
Keyword [sv]
informationssäkerhet arkitekturbeskrivningar säkerhet datasäkerhet IT-säkerhet vyer integrerade separerade sabsa modaf togaf zachman säkerhetsfunktioner ramverk arkitekturramverk
National Category
Computer Science
URN: urn:nbn:se:liu:diva-84478ISRN: LIU-IDA/LITH-EX-A--12/047—SEOAI: diva2:559472
Subject / course
Computer and information science at the Institute of Technology
Available from: 2012-10-23 Created: 2012-10-09 Last updated: 2012-10-23Bibliographically approved

Open Access in DiVA

Informationssäkerhet i arkitekturbeskrivningar(1558 kB)311 downloads
File information
File name FULLTEXT01.pdfFile size 1558 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Flod, Linus
By organisation
Database and information techniquesThe Institute of Technology
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 311 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 588 hits
ReferencesLink to record
Permanent link

Direct link