Overview: Established in 1989, the Information Security Forum (ISF), an international association of over 260 companies and public sector organizations, funds and/or cooperates in the development of research about information security. Current projects include: disappearance of the network boundary, created to enable the fast tracking of investigation of security issues; identity management, which enables an organization to manage a user's interaction with organizational assets such as information systems, telephone networks, and even buildings; incident management and response, which examines how an organization should respond to a security incident; information risk analysis methodologies (IRAM), initiated in response to the need for an approach to conducting information risk analysis; patch management, which will identify key issues, potential solutions and lessons learned in patch management; return on security investment, which will explore how ROSI can be calculated, through a mix of research, case studies and Member input; and security and legislation, which will examine the relevant laws and regulations for a particular region (eg Europe, North America), highlighting the key points and issues from a security perspective.
Specifications: Available at: https://www.securityforum.org/whatwedo/publictools/
IPR Policy: Not available
Current Status: Active