Loading [MathJax]/extensions/MathMenu.js
Security analysis and the DSM model | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >Proceedings. 13th Internation...

Security analysis and the DSM model

PDF
Bingyang Zhou
All Authors

Abstract:

This paper mainly discusses security analysis in Web-based information systems. The analysis focuses on current client/server system application environments and system v...Show More

Metadata

Abstract:

This paper mainly discusses security analysis in Web-based information systems. The analysis focuses on current client/server system application environments and system vulnerabilities. The paper also briefly describes a proposed conceptual security model-dual security model (DSM). The model focuses on risk management by identifying possible attacks on the system and addressing them before they can impact significantly system security and business of the organisation. The key design feature of this model is developing a high level risk assessment framework for analysing and evaluating the system environment, interrelated system functions, risk modelling and the evaluation process in Web-based information systems.
Published in: Proceedings. 13th International Workshop on Database and Expert Systems Applications
Date of Conference: 06-06 September 2002
Date Added to IEEE Xplore: 10 December 2002
Print ISBN:0-7695-1668-8
Print ISSN: 1529-4188
DOI: 10.1109/DEXA.2002.1045870
Conference Location: Aix-en-Provence, France
Contents

1. Introduction

In the age of the Internet and World Wide Web, system security is one of the most important issues in any global web-based business information systems. This is confirmed by the strong of commitment from system security professionals, research community and major business application software vendors. The types of impacts include losses in productivity, revenue, customer confidence, stock price and other negative results. Recent denial of service attacks, viruses, computer intrusions, hackers and insider activities have cost companies millions of dollars. In a recent computer crime survey, respondents from 273 U.S. corporations, government agencies, financial institutions, medical institutions and universities reported losses totalling over $265 million [1]. The most serious financial losses occurred through theft of proprietary information and financial fraud. As the rapid growth of Internet access, the adoption of the Internet by businesses and the increased global competition, the financial and political impacts of these incidents will increase and security threats cannot be avoided.

Contact IEEE to Subscribe
More Like This
Information security risk management in small-scale organisations: A case study of secondary schools computerised information systems

2013 Information Security for South Africa

Published: 2013

A Holistic, Collaborative, Knowledge-Sharing Approach for Information Security Risk Management

2008 The Third International Conference on Internet Monitoring and Protection

Published: 2008

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.