Семантический анализ информационных рисков и угроз на основе онтологии стандарта ISO/IEC 27001

Authors

  • Вероника Викторовна Гаршина Voronezh State University image/svg+xml
  • Вячеслав Алексеевич Степанцов Voronezh State University image/svg+xml
  • Анастасия Юрьевна Данковцева Voronezh State University image/svg+xml

DOI:

https://doi.org/10.17308/sait.2018.4/1255

Keywords:

ontology, information risk and threat analysis, ISO / IEC 27001, SWRL rules, SPARQL queries

Abstract

The article presents the implementation of the ontological approach to the modeling of the semantic regularities for the management of the company’s information security based on the ISO / IEC 27001 standard. A technology development platform based on universal standards and using free software. A prototype of an information semantic analysis system of risks threats has been made.

Author Biographies

  • Вероника Викторовна Гаршина, Voronezh State University

    Ph.D., Associate Professor, Department of Processing Technology and Information Security, Computer Sciences Faculty, Voronezh State University

  • Вячеслав Алексеевич Степанцов, Voronezh State University

    Ph.D., Associate Professor, Department of Processing Technology and Information Security, Computer Sciences Faculty, Voronezh State University

  • Анастасия Юрьевна Данковцева, Voronezh State University

    Master of 1 year training program «Information Systems Security», Computer Sciences Faculty, Voronezh State University

References

Downloads

Published

2018-08-30

Issue

No. 4 (2018): October - December

Section

Information Security

License

Условия передачи авторских прав in English

How to Cite

Семантический анализ информационных рисков и угроз на основе онтологии стандарта ISO/IEC 27001. (2018). Proceedings of Voronezh State University. Series: Systems Analysis and Information Technologies, 4, 73-80. https://doi.org/10.17308/sait.2018.4/1255

Most read articles by the same author(s)