Ahmad Iqbal Hakim Suhaimi

An Analysis of Software Supportable Tasks Related with ISO/IEC 15408

From the perspective of information security engineering, ISO/IEC 15408, one of ISO/IEC security standards, plays an important role to ensure the whole security of an information/software system. ISO/IEC 15408 is a complex security standard which requires involvement of wide range of participants to perform a quite number of tasks as well as various documents. ISO/IEC 15408 is periodically reviewed and maintained to achieve ongoing improvement so that workflow of tasks and contents/format of documents related with the standard are changed according to changes of the standards. Consequently, it is difficult to do all of the tasks related with ISO/IEC 15408 without any supporting tools. However, there is no study to identify which tasks related with ISO/IEC 15408 can be supported by software tools. Indeed, no one makes clear what the tasks and participants exist. This paper presents the first analysis to identify all software supportable tasks related with ISO/IEC 15408. The paper enumerates all of the participants, documents, and tasks related with ISO/IEC 15408 and shows relationship among them, and identifies all software supportable tasks. The analysis and its results become a basis to construct an information security engineering environment based on ISO/IEC 15408 for ensuring the whole security of an information/software system.

An Engineering Environment for Supporting Information Security Management Systems

Information Security Management Systems (ISMSs) have been playing an important role to help organizations managing their information securely. However, organizations facing many challenges in from establishment phase to optimization phase of ISMSs because organizations have to perform a lot of tasks with various participants and manage a vast amount of documents. As a result, it is difficult for an organization to establish and maintain a good and effective ISMS. This paper proposes an engineering environment to support organizations with ISMSs which is an engineering environment that integrating various support tools to provide organizations with comprehensives facilities to perform all tasks in ISMS life cycle processes consistently and continuously based on ISO/IEC 27000 series standards.

A Systematic Management Method of ISO Information Security Standards for Information Security Engineering Environments

An ideal secure information system is not only to keep enough security strength of all components of a target system, but also to ensure all tasks in software life cycle process are done appropriately. Under the consideration, information security engineering environments that integrate various tools to support the tasks are proposed. On the other hand, it is difficult to define generally accepted security strength and its evaluation criteria. ISO information security standards, which regulate various information security related contents are expected, can be used as criteria for the purpose, and should be provided as databases to be used from the tools. However, because standards are always changed and their contents are different from each others, it is difficult to design and manage the databases. This paper proposes a systematic management for information security engineering environments that ensure safety in software life cycle based on the standards.

An Engineering Environment Based on ISO/IEC 27000 Series Standards for Supporting Organizations with ISMSs

Information Security Management Systems (ISMSs) play important roles to manage organization’s information assets securely. However, organizations with ISMSs facing various challenges to develop and maintain such a complex management system effectively. Such organizations demand tools that can provide them with comprehensive support for all tasks in ISMS. This paper presents an engineering environment to support organizations with ISMSs consistently and continuously based on ISO/IEC 27000 series. At first, the paper presents challenges in ISMS and requirements analysis to address the challenges. The paper, then, presents an architecture and some use cases of the environment.

Supporting tools for software supportable tasks related with ISO/IEC 15408

ISO/IEC 15408, one of international security standards, plays an important role to ensure whole security of information/software systems. Software supportable tasks related with ISO/IEC 15408 have been analyzed as a basic to construct an information security engineering environment (ISEE). However, it does not clarify what kinds of supporting tools are necessary for those software supportable tasks. In order to provide practical support, it is necessary to provide various supporting tools for the tasks. This paper analyzes deeply the software supportable tasks related with ISO/IEC 15408, analyzed requirements of supporting tools, and proposes a series of supporting tools for the tasks as the core of ISEE. These tools can be integrated to provide comprehensives facilities to perform the tasks consistently and continuously related with ISO/IEC 15408.

Towards Understanding the Concept of Tourism Experience Sharing

Tourism embraces nearly all aspects of our society. As tourists travel from different places to another, a lot of experiences and memories can be captured during the journey of the vacation. Despite the exciting experience that one can get from traveling, experience sharing among tourists used to be private and undisclosed that was only shared within trusted acquaintances or circles among them. This paper reviews and explores various existing approaches to understand the concept of experience sharing in tourism. It covers views of the relationship of tourism with the main motivation concept which is pull and push factor that were derived from Maslow’s basic needs hierarchy. The role of ICT and experience sharing in tourism are also discussed. Thus, this paper provides a better understanding of experience sharing in tourism by covering aspects related to it and highlights the important role of information technology in enhancing tourists’ experience sharing.

The Issues of Halal Inspection Process from the Perspective of Demand and Supply Side in Malaysia Halal Certification System

Halal inspection (HI) allows the auditor to perform a physical evaluation on the inspection site to ensure it follows the related standards and Islamic guidelines. HI is carried out as part of several important processes in Halal certification (HC) system where the end product is issued in the form of halal certificate and logo. But, HI is not an easy procedure and the complexity of it has become part of the major factor that contributes to several issues in HC field. Many scholars have studied the issues in HC but there are still lacking extensive research that focuses on HI process. This article attempts to describe the issue in HI which elaborated from the perspective of demand and supply side of HC in Malaysia. The key motivation of this study focuses on the changes to be implemented on HI process via the use of information technology such as virtual technology. The study is carried out based on the Work System Framework and Computer-Supported Cooperative Work as the research basis where the data is collected via interviews and observations focusing on the HI process. The results will provide exposure on HI problems which should be considered for the better use of today’s technological advancement in HC field. As technology advances, HC will have to adapt to fit current technology. This is a new innovation in HI process; halal virtual inspection is a worthwhile topic to study so that the quality of services in HC sector can be improved for the future.

A Study on Supporting Factors of Digital Workplace Diffusion in Public Sector

Digital workplace has become the working evolution in today’s workplace. People nowadays tend to do job virtually compared to conventional. This is due to the fact that the people and the things around them can be linked, and shared information as well as helping in making a decision by using advanced technology tools. For organization, as the customers’ expectations growing, workforce and work culture changes along with the growth, demographic shift, information overload as well as the usage of advanced technologies tools take place, employees will find a way to empower by ensuring that all the information and tools they need are at their fingertips, for them to share, collaborate and do jobs effectively and even to make decision in the workplace. This research focuses on literature in workplace, digital workplace and elements of digital workplace. We also performed a preliminary study on digital workplace, through interviewing selected respondents from different agencies in public sector and private sector, based on their job position, work experience and area of work. The result of the research identified that, supporting factors for digital workplace diffusion in public sector are advanced technologies tools, that consist of social technologies tools, contextual intelligence tools, mobility and communication infrastructure. Whereas other supporting factors are top management support and skilled/talented employees in the organization. These findings can be a basis of research for researchers and practitioners to further examine digital workplace in public sector.

Assessment of cyberbullying factors among secondary school students in Malaysia

A large increase has been shown in the number of cyberbullying cases among school students for the past decades. The rates of cyberbullying have increased due to the extensive use of mobile devices among the students. Thus, it is important to identify the factors of cyberbullying in order to address the issues appropriately. The aim of this research is to assess the association of cyberbullying victim with demographic profiles. This study focuses on different types of secondary school in Malaysia. A quantitative method was adopted in this study using survey questionnaires. Chi square test was used to test the association of cyberbullying victim with demographic profiles. Logistic Regression was used to determine the significant factors that contribute to the cyberbullying victim. The results indicate that the type of schools has significant impact to cyberbullying.

Accessibility evaluation using Web Content Accessibility Guidelines (WCAG) 2.0

The Homestay websites in Malaysia are gaining popularity, locally and abroad. Thus, it is imperative that it should be designed by using the proper accessibility guidelines However, the current accessibility state of the Homestay websites in Malaysia is still unknown. The main objective of this research is to investigate the accessibility of Homestay websites in Malaysia. There are 328 samples of Homestay websites in Malaysia gathered from www.carihomestay.net portal. The evaluation was done from 15th April 2014 to 15th June 2014 by using an automated evaluation tool (Achecker) and Web Content Accessibility Guidelines (WCAG) 2.0. The results show that there are six top critical accessibility errors; (i) Non-text Content: IMG, ALT TEXT (1.1.1), (ii) Info &Relationships: INPUT (1.3.1), (iii) Contrast: LINK, TEXT COLOR (1.4.3), (iv) Link Purpose: ANCHOR, TEXT (2.4.4), (v) Language of Page: HTML (3.1.1) and (vi) Labels or Instructions: BODY, INPUT (3.3.2). This research provides several recommendations to improve the accessibility levels for Homestay websites in Malaysia. Future research includes accessibility evaluation for different genre of websites and applications that are being used in the blended learning environment.