Beschreibung
This publication is a collection of papers from the Third International Working Conference of IFIP TC-11 Working group 11.5 on "Integrity and Internal Control in Information systems". IFIP TC-11 Working Group 11.5 explores the area of integrity within information systems and the relationship between integrity in information systems and the overall internal control systems that are established in organizations to support the corporate governance codes. We want to recommend this book to security specialists, IT auditors and researchers who want to learn more about the business concerns related to integrity. Those same security specialists, IT auditors and researchers will also value this book for the papers presenting research into new techniques and methods for obtaining the desired level of integrity. The third conference represents a continuation of the dialogue between information security specialists, internal control specialists and the business community. The conference objectives are: - To present methods and techniques that will help business achieve the desired level of integrity in information systems and data; - To present the results of research that may in future be used to increase the level of integrity or help management maintain the desired level of integrity; - To investigate the shortcomings in the technologies presently in use, shortcomings that require attention in order to protect the integrity of systems in general.
Autorenporträt
InhaltsangabePreface. Acknowledgements. 1. COSO in the Worldbank; F.H. Choudhury, P. Mitchell. 2. Control Models and Control Self Assessment: Results of a Survey of the IIA CSA Center; R. Melville, M. Hafen. 3. Implementing Information Integrity Technology - A Feedback Control System Approach; V.V. Mandke, M.K. Nayar. 4. Efficient Methods for Checking Integrity: An Integrated Spreadsheet Engineering Methodology (ISEM); K. Rajalingham, et al. 5. The Integrity Challenge; P. Ammann, S. Jajodia. 6. Integrity and Internal Control in a Statistical Environment; W.J. Keller, R.G.J. Rot. 7. Definition of Integrity Policies for Web-based Applications; P. Díaz, et al. 8. Firewall Policies Definition Tools: An Implementation Idea; P. Asirelli, F. Fabbrini. 9. Integrity Testing in WWW Environment; M. Stanek, D. Olejár. 10. Complex IT Environments: Ascertaining Information Integrity; P.J.M. Poos. 11. Integrity Problems in Distributed Accounting Systems with Semantic ACID Properties; L. Frank. 12. DEMIDS: A Misuse Detection System for Database Systems; C.Y. Chung, et al. 13. Application of Models from Epidemiology to Metrics for Computer Virus Risk - A Brief Update; J.L. Aron, R.A. Gove. Index of Contributors. Index of Keywords.
