Munich Personal RePEc Archive

Strengthening the Management of Ubiquitous Internet by Refining ISO/IEC 27001 Implementation Using a Generic Responsibility Model

Feltus, Christophe and Khadraoui, Djamel (2017): Strengthening the Management of Ubiquitous Internet by Refining ISO/IEC 27001 Implementation Using a Generic Responsibility Model.

[img]
Preview
PDF
MPRA_paper_77512.pdf

Download (151kB) | Preview

Abstract

The recent emergence of decentralized networks and ubiquitous Internet has highlighted the need for a better management of the companies’ IT architecture and for an improvement of the users of the network’s responsibility. Many standards have recently emerged to face these requirements. By analyzing them, we observe that they all include reference to the user responsibility but also that no common understanding of it exists. These statements have oriented our research toward the elaboration of an innovative, simple and pragmatic responsibility model that includes a user commitment dimension. ISO/IEC 27001:2005 is one of that new standard that aims at providing a framework for improving the information system management and the security of IT architecture. Although this standard is recognized over the globe, many surveys and cases studies provide interesting feedback about its implementation problems. In this paper, we introduce our responsibility model, we depict the responsibility aspects encompassed in ISO 27001 and we propose some improvement perspectives to face these problems and strengthen its implementation.

Commentary/Response Threads

UB_LMU-Logo
MPRA is a RePEc service hosted by
the Munich University Library in Germany.