Journal of information and communication convergence engineering

The Korea Institute of Information and Commucation Engineering (한국정보통신학회)
권호 표지
DOI QR코드

DOI QR Code

A Derivation of Evaluation Item about Enterprise Security Management

  • Kim, Sun-Joo (Department of Computer Engineering, Paichai University) ;
  • Jo, In-June (Department of Computer Engineering, Paichai University)
  • Received : 2010.08.18
  • Accepted : 2010.10.01
  • Published : 2010.10.30
Download PDF
⟨ Previous Next ⟩

Abstract

The Enterprise Security Management system is a centralized control system based on predefined security policies by organizations. In Korea, there is a Common Criteria security certification according to the strict standards for various features. As the needs of information security product are increasing, the ESM system should be evaluated with quality characteristics. In this paper, we propose evaluation items for functionality and performance of Enterprise Security Management system, and the best practices for evaluation.

Keywords

References

  1. TTA Dictionary of Information and Telecommunication
  2. ISO/IEC 9126: Software Engineering- Software Product Quality
  3. ISO/IEC 12119: Information Technology Software Packages Quality Requirements and Testing
  4. Ministry of Public Administration and Security, Notice 2008-26, "Common Criteria for Information Technology Security Evaluation ", 2008.7.16
  5. 2010 White paper on national information security, KISA, 2010.4

Cited by

  1. Solution for Distributed User's Privacy Under Web Environment vol.17, pp.2, 2013, https://doi.org/10.6109/jkiice.2013.17.2.317