Vis enkel innførsel

dc.contributor.authorAgrawal, Vivek
dc.contributor.authorSnekkenes, Einar Arthur
dc.date.accessioned2019-04-23T11:43:37Z
dc.date.available2019-04-23T11:43:37Z
dc.date.created2018-08-07T16:44:23Z
dc.date.issued2018
dc.identifier.isbn978-989-758-319-3
dc.identifier.urihttp://hdl.handle.net/11250/2595054
dc.description.abstractIt is a common practice in the industry to organize benchmark processes to establish information security performance evaluation standards. A benchmarking system collects information security-related data from the organization to establish a standard. The information shared by the organization often contains sensitive data (details of the vulnerability, Cyber attacks). The present benchmarking systems do not provide a secure way of exchanging sensitive information between the submitter and the benchmark authority. Furthermore, there is a lack of any mechanism for the submitters to verify that the final benchmark result contains the response submitted by them. Hence, people are reluctant to take active participation in sharing their sensitive information in the benchmarking process. We propose a novel approach to solve the security limitations of present benchmarking systems by applying the concepts of electronic voting to benchmark. Our solution provides secrecy to submitters’ identity and to the benchmark responses. Our approach also ensures that all the submitted responses have been correctly counted and considered in the final benchmark result.nb_NO
dc.description.abstractSecure Benchmarking using Electronic Votingnb_NO
dc.language.isoengnb_NO
dc.publisherSciTePressnb_NO
dc.relation.ispartofProceedings of the 15th International Joint Conference on e-Business and Telecommunications - (Volume 1)
dc.titleSecure Benchmarking using Electronic Votingnb_NO
dc.typePeer reviewednb_NO
dc.description.versionpublishedVersionnb_NO
dc.source.pagenumber25-40nb_NO
dc.identifier.doi10.5220/0006827801910206
dc.identifier.cristin1600271
dc.description.localcodeThe data provided by dblp on its webpages, as well as their XML, JSON, RDF, RIS, BibTeX, and text export formats available at our website, are released under the Open Data Commons Attribution License (ODC-BY 1.0). You are free to copy, distribute, use, modify, transform, build upon, and produce derived works from our data as long as you attribute any public use of the data, or works produced from the data, in the manner specified in the license.nb_NO
cristin.unitcode194,63,30,0
cristin.unitnameInstitutt for informasjonssikkerhet og kommunikasjonsteknologi
cristin.ispublishedtrue
cristin.fulltextoriginal
cristin.qualitycode1


Tilhørende fil(er)

Thumbnail

Denne innførselen finnes i følgende samling(er)

Vis enkel innførsel