Enterprise Information Security Management Based on Context-Aware RBAC and Communication Monitoring Technology

<table class="table-group" id="tab13"><tr><td><table class="table"><tr><td class="thead-hr" colspan="3"><hr/></td></tr><tr class="thead"><td align="left" rowspan="2">Item</td><td align="center" colspan="2">Approach</td></tr><tr class="thead"><td align="left">Traditional ISMS</td><td align="left">Proposed ISMS</td></tr><tr><td class="thead-hr" colspan="3"><hr/></td></tr><tr><td align="left">Management approach</td><td align="left">Passive</td><td align="left">Active</td></tr><tr><td align="left">System management</td><td align="left">More complicated</td><td align="left">More convenient</td></tr><tr><td align="left">Strictness of security</td><td align="left">Loose</td><td align="left">Strict</td></tr><tr><td align="left">Permission management</td><td align="left">Complex</td><td align="left">Simple</td></tr><tr><td align="left">Audit trail setting</td><td align="left">To be set in different monitoring devices</td><td align="left">Simply define needed control items as per roles</td></tr><tr><td align="left">Licensed count of equipment</td><td align="left">Unable to effectively control</td><td align="left">Able to use limited number of licenses in required control</td></tr><tr class="table-tr"><td colspan="3"><hr class="tbody-hr"/></td></tr></table></td></tr></table>

Comparisons between traditional ISMS and proposed ISMS.

Mathematical Problems in Engineering

tab13

Table 13

Table 13: Enterprise Information Security Management Based on Context-Aware RBAC and Communication Monitoring Technology 