标题: | A study on e-Taiwan information system security classification and implementation |
作者: | Farn, Kwo-Jean Lin, Shu-Kuo Lo, Chi-Chun 资讯管理与财务金融系 注:原资管所+财金所 Department of Information Management and Finance |
关键字: | Cyberspace;Defense-in-Depth;information assurance;corporate governance;organized attack |
公开日期: | 1-一月-2008 |
摘要: | Information systems of Cyberspace offer attractive targets. They should be resistant to such as Active Attack, Passive Attack, Insider Attack, Close-in Attack, and Distribution Attack from the full range of threat-agents-from hackers to nation states-and they must limit damage and recover rapidly when attacks do occur. According to Common Criteria (CC), Information Security Management System (ISMS) and the international standards of Information System Security (ISO/IEC 15408, ISO/IEC 17799, and ISO/IEC TR 19791) as well as the other international standards and guidelines such as the framework of Defense-in-Depth promoted by the U.S., in this paper we propose a new framework of information system security classification for e-Taiwan to reach the vision '' information and communication network resources can be fully used in an obstacle free and secure environment by year 2008.'' (C) 2007 Elsevier B.V. All rights reserved. |
URI: | http://dx.doi.org/10.1016/j.csi.2007.07.001 http://hdl.handle.net/11536/9854 |
ISSN: | 0920-5489 |
DOI: | 10.1016/j.csi.2007.07.001 |
期刊: | COMPUTER STANDARDS & INTERFACES |
Volume: | 30 |
Issue: | 1-2 |
起始页: | 1 |
结束页: | 7 |
显示于类别: | Articles |
文件中的档案:
If it is a zip file, please download the file and unzip it, then open index.html in a browser to view the full text content.