Please use this identifier to cite or link to this item: https://ir.iimcal.ac.in:8443/jspui/handle/123456789/1600
Full metadata record
DC FieldValueLanguage
dc.contributor.authorSaha, Partha
dc.contributor.authorParameswaran, Nandan
dc.contributor.authorRay, Pradeep K.
dc.contributor.authorMahanti, Ambuj
dc.date.accessioned2021-08-26T06:23:39Z-
dc.date.available2021-08-26T06:23:39Z-
dc.date.issued2011
dc.identifier.urihttps://www.scopus.com/inward/record.uri?eid=2-s2.0-84856117084&doi=10.1109%2fDASC.2011.37&partnerID=40&md5=7b7a5dff9bcf03b1dc3a82468f4b9a26
dc.identifier.urihttps://ir.iimcal.ac.in:8443/jspui/handle/123456789/1600-
dc.descriptionSaha, Partha, Management Information Systems Group, Indian Institute of Management, Calcutta, Calcutta, India; Parameswaran, Nandan, School of Computer Science and Engineering, UNSW University of New South Wales, Sydney, NSW, Australia; Ray, Pradeep K, School of Information Systems, Technology and Management, University of New South Wales, Sydney, NSW, Australia; Mahanti, Ambuj, Management Information Systems Group, Indian Institute of Management, Calcutta, Calcutta, India
dc.descriptionISSN/ISBN - 978-076954612-4
dc.descriptionpp.73-80
dc.descriptionDOI - 10.1109/DASC.2011.37
dc.description.abstractInterconnected network centric environment is governed by a complex web of regulatory standards across wide geographical boundaries. With increasing trend of globalization and e-governance initiatives sweeping across different industrial sectors the multi-national corporations are forced to conform to multiple government regulations demanded by numerous stakeholders comprising regulatory authorities, legal entities, consumer forum and partners. In a heterogeneous, multi-regulated, multi-disciplined and global environment, corporations are often required to adhere to more than one standard and best practice method. Compliance auditing (CA) is the process that identifies and analyses any misalignment and non-compliance of the organization's rules and policies vis-a-vis government regulations. A distinct challenge in compliance auditing is the repetitive, resource intensive process of identifying non-compliant organizational issues based on company policies, controls or industrial standards. In this paper, we propose a framework for building a multi-agent information model that captures the notion of compliance semantics and presents it using ontology. We further present a methodology for computing the compliance metric of organizational practices with regulatory standards/requirements capturing the relevance of the ontological concepts using fuzzy weights for estimating the compliance. © 2011 IEEE.
dc.publisherSCOPUS
dc.publisherProceedings - IEEE 9th International Conference on Dependable, Autonomic and Secure Computing, DASC 2011
dc.relation.ispartofseries6118356
dc.subjectAgent Based System
dc.subjectCompliance Measurement
dc.subjectInformation Securiy
dc.subjectIT Governance
dc.subjectOntology
dc.subjectSemantic Modelling
dc.titleOntology based modeling for information security management
dc.typeConference Paper
Appears in Collections:Management Information Systems

Files in This Item:
There are no files associated with this item.


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.