Mohamed S. Saleh scite author profile

This paper is concerned with supporting the use of ISO 17799: 2005 information security management standard for the purpose of providing a 'common safe environment' for information services. The paper introduces a STOPE view of the standard, integrating its parts and protection measures around the basic domains of 'strategy, technology, organization, people, and environment'. The paper also presents an approach for the application of the standard, considering the STOPE view, in a way that emphasizes continuous improvement. The phases of the approach are based on the phases of six sigma DMAIC approach of 'define, measure, analyze, improve, and control'; the team proposed for the implementation of the work is also based on six sigma principles. The paper concludes with some suggestions for future related and needed work.

show abstract

A Survey of SQL Injection Attack Detection and Prevention

Elshazly¹,

Fouad²,

Saleh³

et al. 2014

JCC

View full text Add to dashboard Cite

Structured Query Language Injection Attack (SQLIA) is the most exposed to attack on the Internet. From this attack, the attacker can take control of the database therefore be able to interpolate the data from the database server for the website. Hence, the big challenge became to secure such website against attack via the Internet. We have presented different types of attack methods and prevention techniques of SQLIA which were used to aid the design and implementation of our model. In the paper, work is separated into two parts. The first aims to put SQLIA into perspective by outlining some of the materials and researches that have already been completed. The section suggesting methods of mitigating SQLIA aims to clarify some misconceptions about SQLIA prevention and provides some useful tips to software developers and database administrators. The second details the creation of a filtering proxy server used to prevent a SQL injection attack and analyses the performance impact of the filtering process on web application.

show abstract

Towards Cloud Computing Services for Higher Educational Institutions: Concepts & Literature Review

Alsaeed

Saleh

2015

View full text Add to dashboard Cite

Cloud computing paradigm has been recognized recently as key enabling efficient and effective technological services that will reshape the delivery and support of the educational services. In this paper, we review the literature on cloud computing adoption by Higher Educational Institutions (HEIs) that were published during the period 2009 -2014. The motivation was to identify the main frameworks, models and architectures that were proposed for establishing cloud computing services inside HEIs. Furthermore, the review researched standard definitions and main characteristics, offered services and delivered models of cloud computing technology. It identified 133 papers that were published during the last six years and were focused on cloud computing adoption frameworks, models and architectures for HEIs. The review also provides a landscape of the research in this area and draws attention for more investigation in this field towards developing a comprehensive unified framework for the adoption of cloud computing services in HEIs.

show abstract

Developing a Framework for Cost-Benefit Analysis of Cloud Computing Adoption by Higher Education Institutions in Saudi Arabia

Aldahwan

Saleh

2018

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Mohamed S. Saleh

A new comprehensive framework for enterprise information security risk management

Using ISO 17799: 2005 information security management: a STOPE view with six sigma approach

A Survey of SQL Injection Attack Detection and Prevention

Towards Cloud Computing Services for Higher Educational Institutions: Concepts & Literature Review

Developing a Framework for Cost-Benefit Analysis of Cloud Computing Adoption by Higher Education Institutions in Saudi Arabia

Contact Info

Product

Resources

About