Abstract
Organizations make use of important information in day-to-day business. Protecting sensitive information is imperative and must be managed. Companies in many parts of the world protect sensitive information using the international standard known as the information security management system (ISMS). ISO 27000 series is the international standard ISMS used to protect confidentiality, integrity, and availability of sensitive information. While an ISMS based on ISO 27000 series has no particular flaws for general information systems, it is unfit to manage sensitive information for industrial control systems (ICSs) because the first priority of industrial control is safety of the system. Therefore, a new information security management system based on confidentiality, integrity, and availability as well as safety is required for ICSs. This new ISMS must be mutually exclusive of an ICS. This paper provides a new paradigm of ISMS for ICSs, which will be shown to be more suitable than the existing ISMS.
| Original language | English |
|---|---|
| Pages (from-to) | 348305 |
| Number of pages | 1 |
| Journal | TheScientificWorldJournal |
| Volume | 2014 |
| DOIs | |
| Publication status | Published - 2014 |
Fingerprint
ASJC Scopus subject areas
- Medicine(all)
Cite this
Advanced approach to information security management system model for industrial control system. / Park, Sanghyun; Lee, Kyung Ho.
In: TheScientificWorldJournal, Vol. 2014, 2014, p. 348305.Research output: Contribution to journal › Article
}
TY - JOUR
T1 - Advanced approach to information security management system model for industrial control system
AU - Park, Sanghyun
AU - Lee, Kyung Ho
PY - 2014
Y1 - 2014
N2 - Organizations make use of important information in day-to-day business. Protecting sensitive information is imperative and must be managed. Companies in many parts of the world protect sensitive information using the international standard known as the information security management system (ISMS). ISO 27000 series is the international standard ISMS used to protect confidentiality, integrity, and availability of sensitive information. While an ISMS based on ISO 27000 series has no particular flaws for general information systems, it is unfit to manage sensitive information for industrial control systems (ICSs) because the first priority of industrial control is safety of the system. Therefore, a new information security management system based on confidentiality, integrity, and availability as well as safety is required for ICSs. This new ISMS must be mutually exclusive of an ICS. This paper provides a new paradigm of ISMS for ICSs, which will be shown to be more suitable than the existing ISMS.
AB - Organizations make use of important information in day-to-day business. Protecting sensitive information is imperative and must be managed. Companies in many parts of the world protect sensitive information using the international standard known as the information security management system (ISMS). ISO 27000 series is the international standard ISMS used to protect confidentiality, integrity, and availability of sensitive information. While an ISMS based on ISO 27000 series has no particular flaws for general information systems, it is unfit to manage sensitive information for industrial control systems (ICSs) because the first priority of industrial control is safety of the system. Therefore, a new information security management system based on confidentiality, integrity, and availability as well as safety is required for ICSs. This new ISMS must be mutually exclusive of an ICS. This paper provides a new paradigm of ISMS for ICSs, which will be shown to be more suitable than the existing ISMS.
UR - http://www.scopus.com/inward/record.url?scp=84928211583&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84928211583&partnerID=8YFLogxK
U2 - 10.1155/2014/348305
DO - 10.1155/2014/348305
M3 - Article
VL - 2014
SP - 348305
JO - Scientific World Journal
JF - Scientific World Journal
SN - 2356-6140
ER -