40
Information Systems Security Design Methods: Implications for Information Systems Development RICHAFID BASKERVILLE School of Management, Binghamton Uruuerszty, Binghamton, New York 13901 The security of information systems is a serious issue because computer abuse is increasing. It is important, therefore, that syst ms analysts and designers develop expertise in methods for specifying information systems security. The characteristics found m three generations of general information system design methods p ovide a framework for comparing and understanding current security desi n me hods. These methods include approaches that use checklists of controls, divide functional requirements into engineering partitions, and create abstract models of both the problem and the solution. Comparisons and contrasts reveal that advances in security methods lag behind advances in general systems development methods. This analysls also reveals that more general methods fail to consider security specifications rigorously. Categories and Subject escriptors: C.O [Computer Systems Organization]: General systems specifLcatzon methodology; H. 1.1 [Information Systems]: Systems and Information Theoryualue of mformatzorz; H. 1.2 [Information Systems]: User/Machine Systemshum n factors; K.6.1 [Management of Computing and Information Systems]: Project and People Managementsysterns and analysw and deszgn; K.6.5 [Management of Computing and Information Systems]: Security and Protectionauthentication; znsurance; inuasz(,e software: phystcal securzt.y General Terms: Management, Security Additional Key Words and Phrases: Checkhsts, control, integrity, risk an lysis, safety, structured systems analysis and design, system modeling INTRO[)UCTION Most designers do not intentionally set out to design an information system that is unsafe or insecure. Yet research into specification methods for the analysis and design of information systems security often seems esoteric and remote. The purpose of this article, therefore, is to provide an analytical description of the evolutllon of information systems (1S) securif~y analysis and design methods. To malke this description interesting to a broad audience, we will approach these methods by comparing them with more general information systems deve - opment methods. In this way, we can understand the current techniques for creating safe computing resources and recognize critical avenues for new research in general systems devel pment methods. Importance of Security The gravity of the systems security issue is reflected in widely known studies of computer abuse [Parker 1976; White side 1978; BloomBecker 1990], computer viruses [Fites et al. 1989; Hruska 1990], and il egitimate computer hacking or cracking [Landreth 1989; Stoll 1989; Permission to copy without fee all or part of this material is granted provided that the copies are not made or distributed for direct commercial advantage, the ACM copyright notice and the title of the pubhcatlo and its date appear, and notice is given that copying is by permission of the Association for Computing Machinery. To copy otherwise, or to republis , requires a fee and/or specific permission. G 1993 ACM 0360-0300/93/1200-0375 $03.50 ACM Computmg Surveys, Vol 25, No 4, December 1993

baskerville risk management

Embed Size (px)

Citation preview

Page 1: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 1/40

Page 2: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 2/40

Page 3: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 3/40

Page 4: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 4/40

Page 5: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 5/40

Page 6: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 6/40

Page 7: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 7/40

Page 8: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 8/40

Page 9: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 9/40

Page 10: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 10/40

Page 11: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 11/40

Page 12: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 12/40

Page 13: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 13/40

Page 14: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 14/40

Page 15: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 15/40

Page 16: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 16/40

Page 17: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 17/40

Page 18: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 18/40

Page 19: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 19/40

Page 20: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 20/40

Page 21: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 21/40

Page 22: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 22/40

Page 23: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 23/40

Page 24: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 24/40

Page 25: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 25/40

Page 26: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 26/40

Page 27: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 27/40

Page 28: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 28/40

Page 29: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 29/40

Page 30: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 30/40

Page 31: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 31/40

Page 32: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 32/40

Page 33: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 33/40

Page 34: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 34/40

Page 35: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 35/40

Page 36: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 36/40

Page 37: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 37/40

Page 38: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 38/40

Page 39: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 39/40

Page 40: baskerville risk management

8/7/2019 baskerville risk management

http://slidepdf.com/reader/full/baskerville-risk-management 40/40


El perro de los baskerville

El perro de los baskerville

Education
Los Tipos de Baskerville

Los Tipos de Baskerville

Documents
Sherlock Holmes - Anjing Setan Baskerville

Sherlock Holmes - Anjing Setan Baskerville

Documents
BASKERVILLE - zooplus...BASKERVILLE ORIGINAL Größe BASKERVILLE ULTRA Größe TYPISCHE Rasse 2 - 3 1 Border Terrier, Jack Russell Terrier 4 - 5 2 Cocker Spaniel, Beagle 5 - 6 3 Collie,

BASKERVILLE - zooplus...BASKERVILLE ORIGINAL Größe BASKERVILLE ULTRA Größe TYPISCHE Rasse 2 - 3 1 Border Terrier, Jack Russell Terrier 4 - 5 2 Cocker Spaniel, Beagle 5 - 6 3 Collie,

Documents
Baskerville Typeface Poster

Baskerville Typeface Poster

Documents
El sabueso de los baskerville

El sabueso de los baskerville

Education
Credit Risk Credit Risk Management System … Risk Credit Risk Management System Management System Management System ... the credit risk management systems of ... external auditors

Credit Risk Credit Risk Management System … Risk Credit Risk Management System Management System Management System ... the credit risk management systems of ... external auditors

Documents
conan_doyle chien baskerville -- Clan9 -

conan_doyle chien baskerville -- Clan9 -

Documents
TIPOGRAFIA BASKERVILLE

TIPOGRAFIA BASKERVILLE

Documents
Baskerville · 2013-03-21 · Baskerville, Bologna, Italia. Il volume è composto in caratteri Baskerville e Gill Sans Stampato in Italia. SLoT quaderno 5 Territori e progetti del

Baskerville · 2013-03-21 · Baskerville, Bologna, Italia. Il volume è composto in caratteri Baskerville e Gill Sans Stampato in Italia. SLoT quaderno 5 Territori e progetti del

Documents
Risk Analysis COEN 250. Risk Management Risk Management consists of Risk Assessment Risk Mitigation Risk Evaluation and Assessment Risk Management

Risk Analysis COEN 250. Risk Management Risk Management consists of Risk Assessment Risk Mitigation Risk Evaluation and Assessment Risk Management

Documents
Introduction to Risk Management. Basic areas: -defining risk management -objectives of risk management -the risk management process -personal risk management

Introduction to Risk Management. Basic areas: -defining risk management -objectives of risk management -the risk management process -personal risk management

Documents
Baskerville Type Specimen

Baskerville Type Specimen

Documents
Baskerville - Zhejiang University · Baskerville is set in ITC New Baskerville Roman and Gill Sans, with Computer Modern Typewriter for literal text. Production and distribution was

Baskerville - Zhejiang University · Baskerville is set in ITC New Baskerville Roman and Gill Sans, with Computer Modern Typewriter for literal text. Production and distribution was

Documents
Module Layout ERM503 Risk Management & Risk Management Standards ENTERPRISE RISK MANAGEMENT ... Module Layout ERM503 Risk Management & Risk Management Standards Faculty FEM FSS FACULTY

Module Layout ERM503 Risk Management & Risk Management Standards ENTERPRISE RISK MANAGEMENT ... Module Layout ERM503 Risk Management & Risk Management Standards Faculty FEM FSS FACULTY

Documents
Securing Risk Management Risk Management Cloud · Oracle Risk Management Cloud Securing Risk Management Release 13 (update 18B)

Securing Risk Management Risk Management Cloud · Oracle Risk Management Cloud Securing Risk Management Release 13 (update 18B)

Documents
GOVERNANCE, RISK MANAGEMENT, AND … Risk Manageme… · (GRC)? 3.1.2 Risk Management . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE

GOVERNANCE, RISK MANAGEMENT, AND … Risk Manageme… · (GRC)? 3.1.2 Risk Management . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE . GOVERNANCE, RISK MANAGEMENT, AND COMPLIANCE

Documents
REEVES & BASKERVILLE FUNERAL HOMES - Amazon S3 · as Freitag-Reeves & Baskerville Funeral Home, the name was changed to Baskerville Funeral Home in 2013. Matt is the funeral service

REEVES & BASKERVILLE FUNERAL HOMES - Amazon S3 · as Freitag-Reeves & Baskerville Funeral Home, the name was changed to Baskerville Funeral Home in 2013. Matt is the funeral service

Documents
Caslon y Baskerville

Caslon y Baskerville

Documents
Jan Pries-Heje, Richard L. Baskerville - hal.inria.fr · 16 MANAGEMENT DESIGN THEORIES Jan Pries-Heje Roskilde University 4000 Roskilde, Denmark Richard L. Baskerville Georgia State

Jan Pries-Heje, Richard L. Baskerville - hal.inria.fr · 16 MANAGEMENT DESIGN THEORIES Jan Pries-Heje Roskilde University 4000 Roskilde, Denmark Richard L. Baskerville Georgia State

Documents
Risk Management Introduction Risk Management Fundamentals Risk Management Process Risk Management Implementation

Risk Management Introduction Risk Management Fundamentals Risk Management Process Risk Management Implementation

Documents
The Risk Management JourneyThe Risk Management Journey€¦ · 21/11/2013 1 Risk Management at NCFERisk Management at NCFE The Risk Management JourneyThe Risk Management Journey Graeme

The Risk Management JourneyThe Risk Management Journey€¦ · 21/11/2013 1 Risk Management at NCFERisk Management at NCFE The Risk Management JourneyThe Risk Management Journey Graeme

Documents
Fava eBook Baskerville

Fava eBook Baskerville

Documents
Baskerville Type Comps 2011

Baskerville Type Comps 2011

Documents
Risk Management - SBM Group · Risk Management Rodrigues • Key Highlights • Executive Summary • Risk Management Framework • Credit Risk Management • Market Risk Management

Risk Management - SBM Group · Risk Management Rodrigues • Key Highlights • Executive Summary • Risk Management Framework • Credit Risk Management • Market Risk Management

Documents
BASKERVILLE kom til · 2018. 10. 16. · 3 POUL STEEN LARSEN & HENRIK BIRKVIG : DA BASKERVILLE KOM TIL BOGDANMARK år 1942-43 Baskerville 29, Garamond 18, Fransk Antikva 14, Caslon

BASKERVILLE kom til · 2018. 10. 16. · 3 POUL STEEN LARSEN & HENRIK BIRKVIG : DA BASKERVILLE KOM TIL BOGDANMARK år 1942-43 Baskerville 29, Garamond 18, Fransk Antikva 14, Caslon

Documents
Clipping Nelson Baskerville

Clipping Nelson Baskerville

Documents
LE CHIEN DES BASKERVILLE - TousVosLivres.com

LE CHIEN DES BASKERVILLE - TousVosLivres.com

Documents
BASKERVILLE ULTRA MUZZLE - zooplus Ultra In-Store Sales... · What is a Baskerville Ultra Muzzle? The Baskerville Ultra is designed by Dr Roger Mugford to protect against bites but

BASKERVILLE ULTRA MUZZLE - zooplus Ultra In-Store Sales... · What is a Baskerville Ultra Muzzle? The Baskerville Ultra is designed by Dr Roger Mugford to protect against bites but

Documents
Cainele Din Baskerville

Cainele Din Baskerville

Documents