Information Security Management In Context Of Globalization
Abstract
The security of information should be understood as the provision of confidentiality, accessibility, integrity, authenticity, and accountability of information. Confidentiality is defined by ISO 27001:2005 as “the property that information is not made available or dis-closed to unauthorized individuals, entities, or processes”. Issues about information availability, understood as “being accessible and usable upon demand by an authorized entity” , are not usually seen as a problem of the whole company. Lack of access to data is easily explained away by leave, the lack of electricity, a virus, or missed key. The third main property of information system security is integrity, that is to say, “safeguarding the accuracy and completeness of assets”. It may be considered at a technical level. Then it concerns the structure and configuration of network devices and applications. However, problems of integrity are mainly related to the activities of workers collecting and processing data. Failure to comply with integrity may cause delays in decision-making by management or a lack of actions to minimize the effect of existing threats.
Issue
Section
Articles
The journal is published under the terms of the Creative Commons Attribution (CC BY) License which permits use, distribution and reproduction in any medium, provided the original work is properly cited.
Copyright on any research article in a journal published by a Journal is retained by the author(s). Authors grant Washington Institute of China Studies a license to publish the article and identify itself as the original publisher.
The Creative Commons Attribution License (CC BY) allows users to copy, distribute and transmit an article, adapt the article and make commercial use of the article. The CC BY license permits commercial and non-commercial re-use of an open access article, as long as the author is properly attributed.
