期刊名称:International Journal of Multimedia and Ubiquitous Engineering
印刷版ISSN:1975-0080
出版年度:2014
卷号:9
期号:5
页码:301-306
DOI:10.14257/ijmue.2014.9.5.30
出版社:SERSC
摘要:A policy is a set of ideas or plans that is used as a basis for making decisions, especially in politics, economics, or business, and it serves as a reference for the organization's activities or specific individual. In this sense, it is important to strengthen the capability of security performance. When it comes to Industrial Control Systems (ICS) which considerably affect the national security, policy compliance with consideration of ICS's characteristic is crucial. This paper is based on data from evaluating the degree of compliance of specific country's infrastructure with survey. Method used in this paper consists of four steps. First, an employee of specific company participates as a subject and evaluates the compliance of his/her organization with personal discretion. Second, determine criteria for further analysis. Third, analyze data for existence and compliance of policy. Fourth, calculate 'Policy- Domain-System (P-D-S)' index from data processed in the previous step. PDS and ISMS data can be used at the same time. This paper will contribute the efficiency of existing ISMS standard.
