IDEAS home Printed from https://ideas.repec.org/p/han/dpaper/dp-301.html
   My bibliography  Save this paper

Modellierung der Sicherheit von Informationssystemen mit DROPS

Author

Listed:
  • Prieß, Andreas
  • Hoppe, Gabriela

Abstract

The complexity of an organization's security problem can be reduced by modelling security issues of business information systems. This facilitates analyzing and detecting security requirements and optimal operational alternatives (i.e. suitable security measures). DROPS (dimension-relational organization and problem oriented security model) is a model for the security of information systems enabling these issues. The approach DROPS is based on is holistic, integrative and scaleable. For example, security considerations concerning information systems are often limited to a technical perspective (IT-security). DROPS allows modelling a mere technical view as well as the integration of non-technical system components (e.g. personnell). Furthermore, non-technical security measures (e.g. organizational issues) can be included into the model. The composition of DROPS offers an organization the opportunity to integrate individual elements of a security problem and their relations. Essential characteristics of specific business processes can be considered this way. In practical application, first of all the choice of suitable security measures is facilitated. Second, DROPS can be used to model actual and/or aspired security requirements and the security system of an organization.

Suggested Citation

  • Prieß, Andreas & Hoppe, Gabriela, 2004. "Modellierung der Sicherheit von Informationssystemen mit DROPS," Hannover Economic Papers (HEP) dp-301, Leibniz Universität Hannover, Wirtschaftswissenschaftliche Fakultät.
  • Handle: RePEc:han:dpaper:dp-301
    as

    Download full text from publisher

    File URL: http://diskussionspapiere.wiwi.uni-hannover.de/pdf_bib/dp-301.pdf
    Download Restriction: no

    More about this item

    Keywords

    Sicherheitsmanagement; Sicherheit von Informationssystemen; IT-IT-Sicherheit; Sicherheitsmodell; Sicherheitsanforderungen; Sicherheitsaspekte; Sicherheitsmaßnahmen;

    JEL classification:

    • O39 - Economic Development, Innovation, Technological Change, and Growth - - Innovation; Research and Development; Technological Change; Intellectual Property Rights - - - Other
    • Z0 - Other Special Topics - - General

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:han:dpaper:dp-301. See general information about how to correct material in RePEc.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: (Heidrich, Christian). General contact details of provider: http://edirc.repec.org/data/fwhande.html .

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service hosted by the Research Division of the Federal Reserve Bank of St. Louis . RePEc uses bibliographic data supplied by the respective publishers.