论文信息 - Toward an Effective Information Security Risk Management of Universities' Information Systems Using Multi Agent Systems, Itil, Iso 27002,Iso 27005

Toward an Effective Information Security Risk Management of Universities' Information Systems Using Multi Agent Systems, Itil, Iso 27002,Iso 27005

Universities in the public and private sectors depend on information technology and information systems to successfully carry out their missions and business functions. Information systems are subject to serious threats that can have adverse effects on organizational operations and assets, and individuals by exploiting both known and unknown vulnerabilities to compromise the confidentiality, integrity, or availability of the information being processes, stored or transmitted by those systems. Threats to information systems can include purposeful attacks, environmental disruptions, and human/machine errors, and can result in harm to the integrity of data. Therefore, it is imperative that all the actors at all levels in a university information system understand their responsibilities and are held accountable for managing information security risk-that is the risk associated with the operation and use of information systems that support the missions and business functions of their university. The purpose of this paper is to propose an information security toolkit namely URMIS (University Risk Management Information System) based on multi agent systems and integrating with existing information security frameworks and standards, to enhance the security of universities information systems.

Hicham Medromi | Hajar Iguer | Sophia Faris | S.El Hasnaoui | Adil Sayouti

[1] Hicham Medromi,et al. Remote Control Architecture Over Internet Based on Multi Agents Systems , 2014 .

[2] Yacine Rezgui,et al. Information security awareness in higher education: An exploratory study , 2008, Comput. Secur..

[3] Edward Humphreys,et al. Information security management standards: Compliance, governance and risk management , 2008, Inf. Secur. Tech. Rep..

[4] Iyad Abu Doush,et al. Multi-Agent Systems - Modeling, Control, Programming, Simulations and Applications , 2011 .

[5] Wolfgang Boehmer,et al. Appraisal of the Effectiveness and Efficiency of an Information Security Management System Based on ISO 27001 , 2008, 2008 Second International Conference on Emerging Security Information, Systems and Technologies.

[6] Jacques Ferber,et al. Les Systèmes multi-agents: vers une intelligence collective , 1995 .

[7] Boubker Regragui,et al. Risk Management for ISO 27005 Decision support , 2013 .

[8] MichaelWooldridge QueenMary andWestfieldCollege,et al. AGENTS AND SOFTWARE ENGINEERING , 2002 .

[9] Costas Lambrinoudakis,et al. Information Systems Security Management: A Review and a Classification of the ISO Standards , 2009, e-Democracy.

[10] Defta Costinela Luminita. Information security in E-learning Platforms , 2011 .