Please use this identifier to cite or link to this item:
Full metadata record
|dc.contributor.author||Ray, Pradeep K.|
|dc.description||Saha, Partha, Management Information Systems Group, Indian Institute of Management, Calcutta, Calcutta, India; Parameswaran, Nandan, School of Computer Science and Engineering, UNSW University of New South Wales, Sydney, NSW, Australia; Ray, Pradeep K, School of Information Systems, Technology and Management, University of New South Wales, Sydney, NSW, Australia; Mahanti, Ambuj, Management Information Systems Group, Indian Institute of Management, Calcutta, Calcutta, India|
|dc.description||ISSN/ISBN - 978-076954612-4|
|dc.description||DOI - 10.1109/DASC.2011.37|
|dc.description.abstract||Interconnected network centric environment is governed by a complex web of regulatory standards across wide geographical boundaries. With increasing trend of globalization and e-governance initiatives sweeping across different industrial sectors the multi-national corporations are forced to conform to multiple government regulations demanded by numerous stakeholders comprising regulatory authorities, legal entities, consumer forum and partners. In a heterogeneous, multi-regulated, multi-disciplined and global environment, corporations are often required to adhere to more than one standard and best practice method. Compliance auditing (CA) is the process that identifies and analyses any misalignment and non-compliance of the organization's rules and policies vis-a-vis government regulations. A distinct challenge in compliance auditing is the repetitive, resource intensive process of identifying non-compliant organizational issues based on company policies, controls or industrial standards. In this paper, we propose a framework for building a multi-agent information model that captures the notion of compliance semantics and presents it using ontology. We further present a methodology for computing the compliance metric of organizational practices with regulatory standards/requirements capturing the relevance of the ontological concepts using fuzzy weights for estimating the compliance. © 2011 IEEE.|
|dc.publisher||Proceedings - IEEE 9th International Conference on Dependable, Autonomic and Secure Computing, DASC 2011|
|dc.subject||Agent Based System|
|dc.title||Ontology based modeling for information security management|
|Appears in Collections:||Management Information Systems|
Files in This Item:
There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.