Home // COMPUTATION TOOLS 2017, The Eighth International Conference on Computational Logics, Algebras, Programming, Tools, and Benchmarking // View article

An Answer Set Solution for Information Security Management

Authors:
Carlos Cares
Mauricio Diéguez

Keywords: Information security; Controls selection; Answer setprogramming; Clingo

Abstract:
Information Security Management is focused on pro-cesses and it is currently guided by control-based standards suchas ISO27002. Controls may be: management objectives, availableresources or desired behaviours that contribute to informationsecurity. Under this process perspective, to reach some securitylevel means to accomplish a specific set of controls. There arequalitative approaches and maturity models that help managersto select what controls to implement next, whilst quantitativeapproaches have just recently emerged under simplified formula-tions. The purpose of this paper is to show an answer set solutionto the problem of selecting what controls to implement next, basedon a given budget, security profit, and temporal dependenciesbetween controls. The solution is illustrated by using Clingo

Pages: 11 to 15

Copyright: Copyright (c) IARIA, 2017

Publication date: February 19, 2017

Published in: conference

ISSN: 2308-4170

ISBN: 978-1-61208-535-7

Location: Athens, Greece

Dates: from February 19, 2017 to February 23, 2017