Zachman and Security Policy
December 5, 2007 – 1:00 am By: admin Views: 129
“A system security policy is often perceived as a set of mandatory requirements levied upon the system by an organizational directive or Information System Security Officer (ISSO). To the user, these security requirements may bear little resemblance to his actual working system security policy, which controls data modification and user privileges. In the course of reengineering business processes and information systems, the system modeling activities provide a unique opportunity: This paper presents a methodology for security policy definition using the Zachman information systems architecture as a tool. The system security policy can be extracted from the Zachman framework, providing a technique for reconciling the security policy as defined by directive with the user’s working system security
requirements.”
Email This Post
Print This Post
- SABSA Executive White Paper
- The Use of Zachman Framework Primitives for Enterprise Modeling
- Managing the Domino Effect Using Enterprise Architecture
- Enterprise Service Bus
- The Four Domain Architecture
- Enterprise Information Systems Strategy and Planning
- Empowering The Business Analyst
- SOA Based Architecture Framework
- EAP: A Introduction to ISO/IEC 15288
- A Method to Redesign the IS Portfolios in Large Organisations
Alan
One Response to “Zachman and Security Policy”
This is a very interesting & important topic for me and my Organisation.
By Gideon Nguu on Jul 24, 2008