"212936" . . "Dempster-Shafer theory; data processing; information security management system"@en . "RIV/60076658:12510/11:43881898!RIV12-MSM-12510___" . "12510" . "MODEL ZPRACOV\u00C1N\u00CD BEZPE\u010CNOSTN\u00CDCH ZPR\u00C1V ZE SYST\u00C9M\u016E PRO F\u00C1ZI MONITOROV\u00C1N\u00CD STAVU BEZPE\u010CNOSTI INFORMAC\u00CD ORGANIZACE"@cs . . . "2011-11-10+01:00"^^ . "7"^^ . "\u010Cesk\u00E9 Bud\u011Bjovice" . "RIV/60076658:12510/11:43881898" . "\u010Cesk\u00E9 Bud\u011Bjovice" . "Ber\u00E1nek, Ladislav" . . . . "Jednou z d\u016Fle\u017Eit\u00FDch oblast\u00ED p\u0159i provozov\u00E1n\u00ED syst\u00E9mu \u0159\u00EDzen\u00ED informa\u010Dn\u00ED bezpe\u010Dnosti (ISMS) dle ISO 27001 je f\u00E1ze monitorov\u00E1n\u00ED. Jej\u00EDm c\u00EDlem je z\u00EDsk\u00E1n\u00ED p\u0159ehledu o situaci v oblasti bezpe\u010Dnosti informac\u00ED. Tento p\u0159ehled je mo\u017Eno vytv\u00E1\u0159et na z\u00E1klad\u011B ud\u00E1lost\u00ED a bezpe\u010Dnostn\u00EDch varov\u00E1n\u00ED z r\u016Fzn\u00FDch syst\u00E9m. Ty jsou provozov\u00E1ny v r\u016Fzn\u00FDch organizac\u00EDch zpravidla ve v\u011Bt\u0161\u00EDm po\u010Dtu. Av\u0161ak komplexita a r\u016Fznorodost t\u011Bchto syst\u00E9m\u016F, mno\u017Estv\u00ED r\u016Fzn\u00FDch zpr\u00E1v a hl\u00E1\u0161en\u00ED o r\u016Fzn\u00FDch bezpe\u010Dnostn\u00EDch ud\u00E1lostech tuto \u00FAlohu zt\u011B\u017Euje. \u00DApln\u00FD p\u0159ehled o bezpe\u010Dnostn\u00ED situaci tak nen\u00ED lehk\u00E9 z\u00EDskat. V tomto p\u0159\u00EDsp\u011Bvku se zab\u00FDv\u00E1me n\u011Bkter\u00FDmi probl\u00E9my p\u0159i vytv\u00E1\u0159en\u00ED p\u0159ehledu o bezpe\u010Dnostn\u00ED situaci a navrhujeme model umo\u017E\u0148uj\u00EDc\u00ED hodnocen\u00ED aktu\u00E1ln\u00EDho stavu bezpe\u010Dnostn\u00ED situace. Model zahrnuje zpracov\u00E1n\u00ED bezpe\u010Dnostn\u00EDch zpr\u00E1v metodami zalo\u017Een\u00FDmi na dolov\u00E1n\u00ED dat, transformaci t\u011Bchto dat do jednotn\u00E9ho form\u00E1tu a vytvo\u0159en\u00ED specifick\u00E9 mno\u017Einy informac\u00ED popisuj\u00EDc\u00ED informa\u010Dn\u00ED bezpe\u010Dnost v organizaci. Aplikace ukazuje, \u017Ee navr\u017Een\u00FD model je efektivn\u00ED p\u0159i z\u00EDsk\u00E1v\u00E1n\u00ED p\u0159ehledu o stavu bezpe\u010Dnostn\u00ED situace v organizac\u00EDch a m\u016F\u017Ee b\u00FDt d\u016Fle\u017Eit\u00FDm n\u00E1strojem pro f\u00E1zi monitorov\u00E1n\u00ED p\u0159i provozov\u00E1n\u00ED syst\u00E9mu \u0159\u00EDzen\u00ED informa\u010Dn\u00ED bezpe\u010Dnosti." . "MODEL FOR SECURITY ALERT PROCESING IN MONITORING PHASE OF INFORMATION SECURITY MANAGEMENT SYSTEM"@en . . . "2"^^ . "978-80-7394-316-5" . "[B98AF3A264D0]" . "MODEL ZPRACOV\u00C1N\u00CD BEZPE\u010CNOSTN\u00CDCH ZPR\u00C1V ZE SYST\u00C9M\u016E PRO F\u00C1ZI MONITOROV\u00C1N\u00CD STAVU BEZPE\u010CNOSTI INFORMAC\u00CD ORGANIZACE" . "Jednou z d\u016Fle\u017Eit\u00FDch oblast\u00ED p\u0159i provozov\u00E1n\u00ED syst\u00E9mu \u0159\u00EDzen\u00ED informa\u010Dn\u00ED bezpe\u010Dnosti (ISMS) dle ISO 27001 je f\u00E1ze monitorov\u00E1n\u00ED. Jej\u00EDm c\u00EDlem je z\u00EDsk\u00E1n\u00ED p\u0159ehledu o situaci v oblasti bezpe\u010Dnosti informac\u00ED. Tento p\u0159ehled je mo\u017Eno vytv\u00E1\u0159et na z\u00E1klad\u011B ud\u00E1lost\u00ED a bezpe\u010Dnostn\u00EDch varov\u00E1n\u00ED z r\u016Fzn\u00FDch syst\u00E9m. Ty jsou provozov\u00E1ny v r\u016Fzn\u00FDch organizac\u00EDch zpravidla ve v\u011Bt\u0161\u00EDm po\u010Dtu. Av\u0161ak komplexita a r\u016Fznorodost t\u011Bchto syst\u00E9m\u016F, mno\u017Estv\u00ED r\u016Fzn\u00FDch zpr\u00E1v a hl\u00E1\u0161en\u00ED o r\u016Fzn\u00FDch bezpe\u010Dnostn\u00EDch ud\u00E1lostech tuto \u00FAlohu zt\u011B\u017Euje. \u00DApln\u00FD p\u0159ehled o bezpe\u010Dnostn\u00ED situaci tak nen\u00ED lehk\u00E9 z\u00EDskat. V tomto p\u0159\u00EDsp\u011Bvku se zab\u00FDv\u00E1me n\u011Bkter\u00FDmi probl\u00E9my p\u0159i vytv\u00E1\u0159en\u00ED p\u0159ehledu o bezpe\u010Dnostn\u00ED situaci a navrhujeme model umo\u017E\u0148uj\u00EDc\u00ED hodnocen\u00ED aktu\u00E1ln\u00EDho stavu bezpe\u010Dnostn\u00ED situace. Model zahrnuje zpracov\u00E1n\u00ED bezpe\u010Dnostn\u00EDch zpr\u00E1v metodami zalo\u017Een\u00FDmi na dolov\u00E1n\u00ED dat, transformaci t\u011Bchto dat do jednotn\u00E9ho form\u00E1tu a vytvo\u0159en\u00ED specifick\u00E9 mno\u017Einy informac\u00ED popisuj\u00EDc\u00ED informa\u010Dn\u00ED bezpe\u010Dnost v organizaci. Aplikace ukazuje, \u017Ee navr\u017Een\u00FD model je efektivn\u00ED p\u0159i z\u00EDsk\u00E1v\u00E1n\u00ED p\u0159ehledu o stavu bezpe\u010Dnostn\u00ED situace v organizac\u00EDch a m\u016F\u017Ee b\u00FDt d\u016Fle\u017Eit\u00FDm n\u00E1strojem pro f\u00E1zi monitorov\u00E1n\u00ED p\u0159i provozov\u00E1n\u00ED syst\u00E9mu \u0159\u00EDzen\u00ED informa\u010Dn\u00ED bezpe\u010Dnosti."@cs . "3"^^ . "Reme\u0161, Radim" . "MODEL ZPRACOV\u00C1N\u00CD BEZPE\u010CNOSTN\u00CDCH ZPR\u00C1V ZE SYST\u00C9M\u016E PRO F\u00C1ZI MONITOROV\u00C1N\u00CD STAVU BEZPE\u010CNOSTI INFORMAC\u00CD ORGANIZACE" . . "Monitoring phase is an important area in the operation of information security management system (ISMS) according to ISO 27001. Its aim is to obtain an overview of the situation in the area of information security in organization. This overview can be created based on events and security alerts from various systems. However, the complexity and diversity of these systems, a number of different reports about various security incidents make this task difficult. A complete overview of the security situation is not so easy to obtain. In this paper, we describe some problems in creating an overview of the security situation and propose a model to assess the current state of the security. The model includes the processing of security reports using methods based on data mining, transformation of data into a uniform format and a use of Dempster-Shafer theory to describe the state of information security in organization. The application demonstrates that the proposed model is effective and can be an important tool for monitoring phase in the operation of information security management system. Keywords: information"@en . . . "Kn\u00ED\u017Eek, Ji\u0159\u00ED" . . "MODEL ZPRACOV\u00C1N\u00CD BEZPE\u010CNOSTN\u00CDCH ZPR\u00C1V ZE SYST\u00C9M\u016E PRO F\u00C1ZI MONITOROV\u00C1N\u00CD STAVU BEZPE\u010CNOSTI INFORMAC\u00CD ORGANIZACE"@cs . . "Sborn\u00EDk z mezin\u00E1rodn\u00ED v\u011Bdeck\u00E9 konference Inproforum 2011 %22Glob\u00E1ln\u00ED ekonomick\u00E1 krize - region\u00E1ln\u00ED dopady%22" . . "MODEL FOR SECURITY ALERT PROCESING IN MONITORING PHASE OF INFORMATION SECURITY MANAGEMENT SYSTEM"@en . . "I" . . . "Jiho\u010Desk\u00E1 univerzita v \u010Cesk\u00FDch Bud\u011Bjovic\u00EDch. Ekonomick\u00E1 fakulta" .