Engineering secure systems with ISO 26702 and 27001

Rhys Evans*, Aggeliki Tsohou, Theo Tryfonas, Thea Morgan

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

7 Citations (Scopus)

Abstract

System engineers are confronted with fast-paced technology developments, complicated contractual relationships, emerging threats and global security requirements, concerns for sustainability and viability of their ventures and a raft of other issues. In this environment, information technology-intensive systems in particular are exposed to risk and recent high-profile incidents have contributed to significant emphasis to be given to security. It is however impossible for systems engineers to become specialists in all areas of concern in order to be able to tackle effectively those issues and thus architecting systems needs to take into account good practice and existing relevant knowledge. When such knowledge is embodied into established and widely accepted standards, not only is there the opportunity to capitalise on their mature content but also to ripe the benefits of compliance, seamless integration and competitive advantage that standardisation provides. In this spirit we investigate in this paper the use of two popular and established standards, the ISO 27000 series and ISO/IEC 26702, as aids in the process of engineering secure systems.

Original languageEnglish
Title of host publication2010 5th International Conference on System of Systems Engineering, SoSE 2010
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages1-6
ISBN (Print)9781424481972
DOIs
Publication statusPublished - 2010
Event2010 5th International Conference on System of Systems Engineering, SoSE 2010 - Loughborough, United Kingdom
Duration: 22 Jun 201024 Jun 2010

Conference

Conference2010 5th International Conference on System of Systems Engineering, SoSE 2010
Country/TerritoryUnited Kingdom
CityLoughborough
Period22/06/1024/06/10

Keywords

  • Security engineering
  • Standards

Fingerprint

Dive into the research topics of 'Engineering secure systems with ISO 26702 and 27001'. Together they form a unique fingerprint.

Cite this