Towards a systemic holistic security management

نویسندگان

  • ALBIN ZUCCATO
  • Albin Zuccato
  • Louise Yngström
چکیده

Information System Security and its management ”is a parasite on the profit”. Gerald Kovacich. This thesis presents research intended to modify the understanding of information system security and to introduce information system security not only as a cost factor but also as a business enabler for eCommerce systems. To achieve this, system theoretic concepts will be applied to information security management, taking into consideration the aspects of technology, sociology and business. The first aspects dealt with are security conception and system specification. A set of requirements has been developed for electronic money systems. However, security management consists not only of requirement specifications; it must also allow an economically and socially acceptable implementation. We have thus developed a holistic framework for security management. This framework describes the activities and workflows that lead to satisfactory security levels in eCommerce. To be able to develop an understandable framework we apply black boxing in order to hide details. Two of these black boxes will be described here to motivate the need of inclusion in the framework, where the first deals with the improvement of a risk assessment methodology for faster application in e-commerce and the second with the influence of the Internet on privacy.

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Managing Information Security in Small and Medium Sized Enterprises: A Holistic Approach

Small to medium sized enterprises (SMEs) constitute a major part of the global economic activity. Due to the distinct characteristics of these enterprises, approaches to information security management that were mainly developed for larger organisations can not be feasibly applied in the context of SMEs. In this paper, we present some of the challenges impeding the implementation of information...

متن کامل

Towards Sustainable Food Systems: a Holistic, Interdisciplinary and Systemic Approach

One of the biggest challenges facing humanity is achieving sustainable food security in the face of population growth, resource scarcity, ecosystem degradation and climate change. Transitioning towards sustainable food systems (SFS) is a must for achieving sustainable development. This review paper highlights the need to adopt a holistic, multidimensional, interdisciplinary and systemic approac...

متن کامل

Perceived information security of internal users in Indian IT services industry

Information security governance dominates the senior management’s agenda in overall organizational informance technology (IT) governance. The globalization trends encompassing all businesses, and risks of information leakage forces organizations to institute mechanisms to protect it. In order to achieve adequate level of protection, organizations implement information security management system...

متن کامل

An Holistic View of Information Security: A Proposed Framework

This discussion paper focuses on an holistic framework proposed that includes the following clusters of ideas: purpose and role of information security, societal trends, human elements, changing technologies, information security management, and complexity and interactions. These multiple views of information security provide a more complete framework in which to embed much of the global resear...

متن کامل

Sketch of a generic security framework based on the paradigms of systemic-holistic approach and the immune system

Everything that we see can be changed. Internet is vulnerable because it was not designed as a whole system. This can be changed by changing the way we think and approach the development of Internet. Initial development of the Internet and other systems focused only on computer technology and communication’s protocols. Many systems are not secure today because most research has concentrated on ...

متن کامل

ذخیره در منابع من


  با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

عنوان ژورنال:

دوره   شماره 

صفحات  -

تاریخ انتشار 2002