{"id":"https://openalex.org/W2028922932","doi":"https://doi.org/10.1108/09685220710817806","title":"A STOPE model for the investigation of compliance with ISO 17799\u20102005","display_name":"A STOPE model for the investigation of compliance with ISO 17799\u20102005","publication_year":2007,"publication_date":"2007-08-11","ids":{"openalex":"https://openalex.org/W2028922932","doi":"https://doi.org/10.1108/09685220710817806","mag":"2028922932"},"language":"en","primary_location":{"id":"doi:10.1108/09685220710817806","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685220710817806","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5069413489","display_name":"Mohamed Saad Saleh","orcid":"https://orcid.org/0000-0003-4226-295X"},"institutions":[{"id":"https://openalex.org/I139894009","display_name":"University of Bradford","ror":"https://ror.org/00vs8d940","country_code":"GB","type":"education","lineage":["https://openalex.org/I139894009"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Mohamed Saad Saleh","raw_affiliation_strings":["School of Informatics, University of Bradford, Bradford, UK"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Informatics, University of Bradford, Bradford, UK","institution_ids":["https://openalex.org/I139894009"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5029208879","display_name":"Abdullah Alrabiah","orcid":null},"institutions":[{"id":"https://openalex.org/I28022161","display_name":"King Saud University","ror":"https://ror.org/02f81g417","country_code":"SA","type":"education","lineage":["https://openalex.org/I28022161"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Abdullah Alrabiah","raw_affiliation_strings":["Electrical Engineering Department, King Saud University, Riyadh, Saudi Arabia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electrical Engineering Department, King Saud University, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I28022161"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5056555461","display_name":"Saad Haj Bakry","orcid":"https://orcid.org/0000-0001-9732-2986"},"institutions":[{"id":"https://openalex.org/I28022161","display_name":"King Saud University","ror":"https://ror.org/02f81g417","country_code":"SA","type":"education","lineage":["https://openalex.org/I28022161"]}],"countries":["SA"],"is_corresponding":false,"raw_author_name":"Saad Haj Bakry","raw_affiliation_strings":["Electrical Engineering Department, King Saud University, Riyadh, Saudi Arabia"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Electrical Engineering Department, King Saud University, Riyadh, Saudi Arabia","institution_ids":["https://openalex.org/I28022161"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":3.3163,"has_fulltext":false,"cited_by_count":20,"citation_normalized_percentile":{"value":0.93052814,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"15","issue":"4","first_page":"283","last_page":"294"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12221","display_name":"Cybersecurity and Cyber Warfare Studies","score":0.9866999983787537,"subfield":{"id":"https://openalex.org/subfields/3320","display_name":"Political Science and International Relations"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}},{"id":"https://openalex.org/T11572","display_name":"Information Technology Governance and Strategy","score":0.9865999817848206,"subfield":{"id":"https://openalex.org/subfields/1404","display_name":"Management Information Systems"},"field":{"id":"https://openalex.org/fields/14","display_name":"Business, Management and Accounting"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/extranet","display_name":"Extranet","score":0.785731315612793},{"id":"https://openalex.org/keywords/intranet","display_name":"Intranet","score":0.6617316007614136},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.5436429977416992},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.5291578769683838},{"id":"https://openalex.org/keywords/information-security-management-system","display_name":"Information security management system","score":0.5134233236312866},{"id":"https://openalex.org/keywords/compliance","display_name":"Compliance (psychology)","score":0.5104511976242065},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4865924119949341},{"id":"https://openalex.org/keywords/information-system","display_name":"Information system","score":0.4188779592514038},{"id":"https://openalex.org/keywords/process-management","display_name":"Process management","score":0.4179617762565613},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.39192378520965576},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3902858793735504},{"id":"https://openalex.org/keywords/knowledge-management","display_name":"Knowledge management","score":0.34949785470962524},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.31353676319122314},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.1695924699306488},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.1534155011177063},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.1403563916683197}],"concepts":[{"id":"https://openalex.org/C162852421","wikidata":"https://www.wikidata.org/wiki/Q373889","display_name":"Extranet","level":4,"score":0.785731315612793},{"id":"https://openalex.org/C2778059363","wikidata":"https://www.wikidata.org/wiki/Q483426","display_name":"Intranet","level":3,"score":0.6617316007614136},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5436429977416992},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.5291578769683838},{"id":"https://openalex.org/C111153917","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management system","level":5,"score":0.5134233236312866},{"id":"https://openalex.org/C2781460075","wikidata":"https://www.wikidata.org/wiki/Q1399332","display_name":"Compliance (psychology)","level":2,"score":0.5104511976242065},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4865924119949341},{"id":"https://openalex.org/C180198813","wikidata":"https://www.wikidata.org/wiki/Q121182","display_name":"Information system","level":2,"score":0.4188779592514038},{"id":"https://openalex.org/C195094911","wikidata":"https://www.wikidata.org/wiki/Q14167904","display_name":"Process management","level":1,"score":0.4179617762565613},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.39192378520965576},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3902858793735504},{"id":"https://openalex.org/C56739046","wikidata":"https://www.wikidata.org/wiki/Q192060","display_name":"Knowledge management","level":1,"score":0.34949785470962524},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.31353676319122314},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.1695924699306488},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.1534155011177063},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.1403563916683197},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C119599485","wikidata":"https://www.wikidata.org/wiki/Q43035","display_name":"Electrical engineering","level":1,"score":0.0},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1108/09685220710817806","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685220710817806","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Partnerships for the goals","id":"https://metadata.un.org/sdg/17","score":0.5}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":12,"referenced_works":["https://openalex.org/W657731981","https://openalex.org/W1485868406","https://openalex.org/W1967029912","https://openalex.org/W1977127417","https://openalex.org/W1989191417","https://openalex.org/W2002071750","https://openalex.org/W2024643361","https://openalex.org/W2050784766","https://openalex.org/W2074702891","https://openalex.org/W2106387622","https://openalex.org/W2126942052","https://openalex.org/W2368496159"],"related_works":["https://openalex.org/W2360072224","https://openalex.org/W1673338230","https://openalex.org/W1968441764","https://openalex.org/W2383231786","https://openalex.org/W1971692475","https://openalex.org/W2182671390","https://openalex.org/W2028922932","https://openalex.org/W1575360468","https://openalex.org/W2755125652","https://openalex.org/W4249834618"],"abstract_inverted_index":{"Purpose":[0],"With":[1],"the":[2,11,15,20,54,62,69,85,103,110,113,131,134,139,145,148,154,161,164,171,183],"widespread":[3],"of":[4,33,48,56,64,66,102,112,136,147,153,163,173,180],"e\u2010services,":[5],"provided":[6],"by":[7],"different":[8,142],"organizations":[9,67],"at":[10,141],"internal":[12],"intranet":[13],"level,":[14,18,23],"business":[16],"extranet":[17],"and":[19,40,90,133],"public":[21],"internet":[22],"compliance":[24,65,181],"with":[25,68,138,151,182],"international":[26,72,184],"information":[27,73,185],"security":[28,74,186],"management":[29,75,187],"standards":[30],"is":[31,51,82],"becoming":[32],"increasing":[34],"importance":[35],"for":[36,43,115,177],"establishing":[37],"a":[38,57,120,174],"common":[39],"safe":[41],"environment":[42,91],"such":[44],"services.":[45],"The":[46,80,107,128,168],"purpose":[47],"this":[49],"paper":[50,108,169],"to":[52,160],"examine":[53],"development":[55],"mathematical":[58,175],"model":[59,81,114,176],"that":[60,96],"enables":[61],"investigation":[63],"widely":[70],"acknowledged":[71],"standard":[76,156],"ISO":[77],"17799\u20102005.":[78],"Design/methodology/approach":[79],"based":[83],"on":[84],"strategy,":[86],"technology,":[87],"organization,":[88],"people":[89],"\u2013":[92,94],"STOPE":[93,165],"framework":[95],"provides":[97],"an":[98],"integrated":[99],"well\u2010structured":[100],"view":[101],"various":[104],"factors":[105],"involved.":[106],"addresses":[109,170],"use":[111,172],"practical":[116,121,125,178],"investigations;":[117],"it":[118],"describes":[119],"example":[122],"illustrating":[123],"possible":[124],"results.":[126],"Findings":[127],"results":[129],"show":[130],"strengths":[132],"weaknesses":[135],"compliance,":[137],"standard,":[140],"levels:":[143],"from":[144],"level":[146,162],"measures":[149],"associated":[150],"each":[152],"\u201c131\u201d":[155],"protection":[157],"controls,":[158],"up":[159],"domains.":[166],"Originality/value":[167],"investigations":[179],"standard.":[188]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":1},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":2},{"year":2013,"cited_by_count":2},{"year":2012,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}
