| Title |
Kompiuterių tinklų saugos užtikrinimo metodikos kūrimas |
| Translation of Title |
Development of computer network security assurance methodology. |
| Authors |
Juknevičiūtė, Erika |
| Full Text |
|
| Pages |
88 |
| Keywords [eng] |
Computer network security assurance methodology ; ISO/IEC 27033:1 ; ISO/IEC 27002 ; risk assessment ; CVSS v2. |
| Abstract [eng] |
The aim of this thesis is adaptation of network security measures based on organization size and sector. Therefore fundamental network security features compatible with ISO/IEC 27002 and ISO/IEC 27033:1 standards have been identified and adoption model of lower TCP/IP security features to unique organization environment is demonstrated. For this reason the calculations of CVSS v2 had to be modified. Another solution proposed to achieve the aim is risk calculation model based on organization size and sector. The risk values are described as calculation result of incident probability and impact to asset. The probability is calculated from statistical data. The most needed network security features to organization environment are chosen by calculated risk values. Decision tree model gives simple view to organization network security needs, therefore it could by used by employees without good technical skill on this area. Also decision tree model could be used later acknowledge database for expert system. |
| Type |
Master thesis |
| Language |
Lithuanian |
| Publication date |
2014 |
