Please use this identifier to cite or link to this item: http://hdl.handle.net/10125/50486

Host Inventory Controls and Systems Survey: Evaluating the CIS Critical Security Control One in Higher Education Networks

File SizeFormat 
paper0599.pdf1.15 MBAdobe PDFView/Open

Item Summary

Title: Host Inventory Controls and Systems Survey: Evaluating the CIS Critical Security Control One in Higher Education Networks
Authors: Kobezak, Philip
Marchany, Randy
Raymond, David
Tront, Joseph
Keywords: Information Security and Privacy
Information Security, Security Controls, Network Inventory
Issue Date: 03 Jan 2018
Abstract: Within the field of information security, the identification of what we are trying to secure is essential to reducing risk. In private networks, this means understanding the classification of host end-points, identifying responsible users, and knowing the location of hosts. For the context of this paper, the authors are considering the challenges faced by higher education institutions in implementing the first Center for Internet Security (CIS) Critical Security Control: inventory of authorized and unauthorized devices. The authors developed and conducted a survey of chief information security officers at these institutions. The survey evaluated their confidence in meeting the goals of host inventory tracking. The results of the survey, along with analysis of the implications for information security operations, are presented in this paper. Changes in technology, such as BYOD, IoT, wireless, virtual machines, and application containers, are contributing to changes in the effectiveness of host inventory controls.
Pages/Duration: 10 pages
URI/DOI: http://hdl.handle.net/10125/50486
ISBN: 978-0-9981331-1-9
DOI: 10.24251/HICSS.2018.597
Rights: Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections:Information Security and Privacy


Please contact sspace@hawaii.edu if you need this content in an ADA compliant alternative format.

Items in ScholarSpace are protected by copyright, with all rights reserved, unless otherwise indicated.