{"id":"https://openalex.org/W1972167346","doi":"https://doi.org/10.1108/09685229810240158","title":"Information security management (3): the Code of Practice for Information Security Management (BS 7799)","display_name":"Information security management (3): the Code of Practice for Information Security Management (BS 7799)","publication_year":1998,"publication_date":"1998-12-01","ids":{"openalex":"https://openalex.org/W1972167346","doi":"https://doi.org/10.1108/09685229810240158","mag":"1972167346"},"language":"en","primary_location":{"id":"doi:10.1108/09685229810240158","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229810240158","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5020056259","display_name":"Rossouw von Solms","orcid":"https://orcid.org/0000-0002-9860-2346"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Rossouw von Solms","raw_affiliation_strings":["Port Elizabeth Technikon, Port Elizabeth, South Africa","(Port Elizabeth Technikon, Port Elizabeth, South Africa)"],"affiliations":[{"raw_affiliation_string":"Port Elizabeth Technikon, Port Elizabeth, South Africa","institution_ids":[]},{"raw_affiliation_string":"(Port Elizabeth Technikon, Port Elizabeth, South Africa)","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5020056259"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.5916,"has_fulltext":false,"cited_by_count":55,"citation_normalized_percentile":{"value":0.8798495,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":"6","issue":"5","first_page":"224","last_page":"225"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9648000001907349,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9648000001907349,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/standard-of-good-practice","display_name":"Standard of Good Practice","score":0.7784552574157715},{"id":"https://openalex.org/keywords/information-security-management","display_name":"Information security management","score":0.7715513706207275},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.652780294418335},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6452401876449585},{"id":"https://openalex.org/keywords/security-controls","display_name":"Security controls","score":0.6099383234977722},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.6038916707038879},{"id":"https://openalex.org/keywords/certified-information-security-manager","display_name":"Certified Information Security Manager","score":0.5590351819992065},{"id":"https://openalex.org/keywords/set","display_name":"Set (abstract data type)","score":0.5423577427864075},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.49633723497390747},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.48148858547210693},{"id":"https://openalex.org/keywords/security-management","display_name":"Security management","score":0.45525842905044556},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.37581631541252136},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.34682685136795044},{"id":"https://openalex.org/keywords/control","display_name":"Control (management)","score":0.28823697566986084},{"id":"https://openalex.org/keywords/network-security-policy","display_name":"Network security policy","score":0.0946926474571228},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.07042968273162842}],"concepts":[{"id":"https://openalex.org/C47309137","wikidata":"https://www.wikidata.org/wiki/Q7598357","display_name":"Standard of Good Practice","level":5,"score":0.7784552574157715},{"id":"https://openalex.org/C148976360","wikidata":"https://www.wikidata.org/wiki/Q1662500","display_name":"Information security management","level":5,"score":0.7715513706207275},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.652780294418335},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6452401876449585},{"id":"https://openalex.org/C178148461","wikidata":"https://www.wikidata.org/wiki/Q1632136","display_name":"Security controls","level":3,"score":0.6099383234977722},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.6038916707038879},{"id":"https://openalex.org/C180823521","wikidata":"https://www.wikidata.org/wiki/Q1662502","display_name":"Certified Information Security Manager","level":5,"score":0.5590351819992065},{"id":"https://openalex.org/C177264268","wikidata":"https://www.wikidata.org/wiki/Q1514741","display_name":"Set (abstract data type)","level":2,"score":0.5423577427864075},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.49633723497390747},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.48148858547210693},{"id":"https://openalex.org/C83163435","wikidata":"https://www.wikidata.org/wiki/Q3954104","display_name":"Security management","level":2,"score":0.45525842905044556},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.37581631541252136},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.34682685136795044},{"id":"https://openalex.org/C2775924081","wikidata":"https://www.wikidata.org/wiki/Q55608371","display_name":"Control (management)","level":2,"score":0.28823697566986084},{"id":"https://openalex.org/C117110713","wikidata":"https://www.wikidata.org/wiki/Q3394676","display_name":"Network security policy","level":4,"score":0.0946926474571228},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.07042968273162842},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1108/09685229810240158","is_oa":false,"landing_page_url":"https://doi.org/10.1108/09685229810240158","pdf_url":null,"source":{"id":"https://openalex.org/S204075876","display_name":"Information Management & Computer Security","issn_l":"0968-5227","issn":["0968-5227","1758-5805"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319811","host_organization_name":"Emerald Publishing Limited","host_organization_lineage":["https://openalex.org/P4310319811"],"host_organization_lineage_names":["Emerald Publishing Limited"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Information Management &amp; Computer Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W1557523735","https://openalex.org/W40842196","https://openalex.org/W2056794087","https://openalex.org/W2362334938","https://openalex.org/W51818037","https://openalex.org/W2777401565","https://openalex.org/W23579156","https://openalex.org/W1972167346","https://openalex.org/W1529017291","https://openalex.org/W2369588203"],"abstract_inverted_index":{"Information":[0,71],"security":[1,14,26,46],"has":[2],"become":[3],"very":[4,51],"important":[5],"in":[6],"most":[7,42],"organizations.":[8],"An":[9],"acceptable":[10,93],"level":[11,94],"of":[12,25,39,45,57,68,87,95],"information":[13,99],"can":[15,48],"only":[16],"be":[17,49],"introduced":[18],"and":[19,30,35,83],"maintained":[20],"if":[21],"the":[22,41,98,105],"correct":[23],"set":[24,44,86],"controls,":[27],"both":[28],"procedural":[29],"technical,":[31],"is":[32],"identified,":[33],"implemented":[34],"maintained.":[36],"The":[37],"process":[38],"identifying":[40],"effective":[43],"controls":[47,88],"a":[50,66,85],"complicated,":[52],"resource\u2010intensive":[53],"process.":[54],"A":[55],"number":[56],"large":[58],"British":[59,108],"companies":[60],"have":[61],"joined":[62],"forces":[63],"to":[64,78,81,97],"establish":[65],"Code":[67],"Practice":[69],"for":[70],"Security":[72],"Management.":[73],"This":[74,101],"document":[75],"provides":[76],"guidelines":[77],"any":[79],"organization":[80],"identify":[82],"introduce":[84],"that":[89],"will":[90],"provide":[91],"an":[92],"protection":[96],"resources.":[100],"paper":[102],"briefly":[103],"discusses":[104],"BS":[106],"7799":[107],"standard.":[109]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":2},{"year":2018,"cited_by_count":2},{"year":2017,"cited_by_count":2},{"year":2016,"cited_by_count":1},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":2},{"year":2013,"cited_by_count":3},{"year":2012,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}