Information security assurance lifecycle research |
| |
| Authors: | XIE Cheng-shan XUJIA Gu-yue WANG Li |
| |
| Affiliation: | 1. State Key Laboratory of Information Security, Beijing 100038, China;2. School of Economy and Management, Beihang University, Beijing 100083, China |
| |
| Abstract: | This article proposes that problems of information security are mainly caused by the ineffective integration of people, operation, and technology, and not merely by the poor use of technology. Based on the information lifecycle, a model of the information security assurance lifecycle is presented. The crucial parts of the model are further discussed, with the information risk value and protect level, and the solution in each step of the lifecycle is presented with an ensured information risk level, in term of the integration of people, operation, and technology. |
| |
| Keywords: | information security information risk information lifecycle |
| 本文献已被 万方数据 ScienceDirect 等数据库收录! |
|
