Securing the commercial internet: Lessons learned in developing a postgraduate course in information security management

This paper describes the inception, planning and first delivery of a security course as part of a postgraduate ecommerce program. The course is reviewed in terms of existing literature on security courses, the common body of knowledge established for security professionals and the job market into which students will graduate. The course described in this paper is a core subject for the e-commerce program. This program was established in 1999 and the first batch of students graduated in 2001. The program is offered at both postgraduate and undergraduate level. The work described here relates to the postgraduate offering. Students on this program are graduates of diverse disciplines and do not have a common e-commerce or business background.

Design of a case-based reasoner for information security in military organizations

Information security is concerned with the protection of information, which can be stored, processed or transmitted within critical information systems of the organizations, against loss of confidentiality, integrity or availability. Protection measures to prevent these problems result through the implementation of controls at several dimensions: technical, administrative or physical. A vital objective for military organizations is to ensure superiority in contexts of information warfare and competitive intelligence. Therefore, the problem of information security in military organizations has been a topic of intensive work at both national and transnational levels, and extensive conceptual and standardization work is being produced. A current effort is therefore to develop automated decision support systems to assist military decision makers, at different levels in the command chain, to provide suitable control measures that can effectively deal with potential attacks and, at the same time, prevent, detect and contain vulnerabilities targeted at their information systems. The concept and processes of the Case-Based Reasoning (CBR) methodology outstandingly resembles classical military processes and doctrine, in particular the analysis of ���lessons learned��� and definition of ���modes of action���. Therefore, the present paper addresses the modeling and design of a CBR system with two key objectives: to support an effective response in context of information security for military organizations; to allow for scenario planning and analysis for training and auditing processes.

Information security and the enforcement of secrecy : the practical application of quantum key distribution

There is no doubt about the necessity of protecting digital communication: Citizens are entrusting their most confidential and sensitive data to digital processing and communication, and so do governments, corporations, and armed forces. Digital communication networks are also an integral component of many critical infrastructures we are seriously depending on in our daily lives. Transportation services, financial services, energy grids, food production and distribution networks are only a few examples of such infrastructures. Protecting digital communication means protecting confidentiality and integrity by encrypting and authenticating its contents. But most digital communication is not secure today. Nevertheless, some of the most ardent problems could be solved with a more stringent use of current cryptographic technologies. Quite surprisingly, a new cryptographic primitive emerges from the ap-plication of quantum mechanics to information and communication theory: Quantum Key Distribution. QKD is difficult to understand, it is complex, technically challenging, and costly-yet it enables two parties to share a secret key for use in any subsequent cryptographic task, with an unprecedented long-term security. It is disputed, whether technically and economically fea-sible applications can be found. Our vision is, that despite technical difficulty and inherent limitations, Quantum Key Distribution has a great potential and fits well with other cryptographic primitives, enabling the development of highly secure new applications and services. In this thesis we take a structured approach to analyze the practical applicability of QKD and display several use cases of different complexity, for which it can be a technology of choice, either because of its unique forward security features, or because of its practicability.

An assurance-based model to holistically assess the information security posture

EXECUTIVE SUMMARY : Evaluating Information Security Posture within an organization is becoming a very complex task. Currently, the evaluation and assessment of Information Security are commonly performed using frameworks, methodologies and standards which often consider the various aspects of security independently. Unfortunately this is ineffective because it does not take into consideration the necessity of having a global and systemic multidimensional approach to Information Security evaluation. At the same time the overall security level is globally considered to be only as strong as its weakest link. This thesis proposes a model aiming to holistically assess all dimensions of security in order to minimize the likelihood that a given threat will exploit the weakest link. A formalized structure taking into account all security elements is presented; this is based on a methodological evaluation framework in which Information Security is evaluated from a global perspective. This dissertation is divided into three parts. Part One: Information Security Evaluation issues consists of four chapters. Chapter 1 is an introduction to the purpose of this research purpose and the Model that will be proposed. In this chapter we raise some questions with respect to "traditional evaluation methods" as well as identifying the principal elements to be addressed in this direction. Then we introduce the baseline attributes of our model and set out the expected result of evaluations according to our model. Chapter 2 is focused on the definition of Information Security to be used as a reference point for our evaluation model. The inherent concepts of the contents of a holistic and baseline Information Security Program are defined. Based on this, the most common roots-of-trust in Information Security are identified. Chapter 3 focuses on an analysis of the difference and the relationship between the concepts of Information Risk and Security Management. Comparing these two concepts allows us to identify the most relevant elements to be included within our evaluation model, while clearing situating these two notions within a defined framework is of the utmost importance for the results that will be obtained from the evaluation process. Chapter 4 sets out our evaluation model and the way it addresses issues relating to the evaluation of Information Security. Within this Chapter the underlying concepts of assurance and trust are discussed. Based on these two concepts, the structure of the model is developed in order to provide an assurance related platform as well as three evaluation attributes: "assurance structure", "quality issues", and "requirements achievement". Issues relating to each of these evaluation attributes are analysed with reference to sources such as methodologies, standards and published research papers. Then the operation of the model is discussed. Assurance levels, quality levels and maturity levels are defined in order to perform the evaluation according to the model. Part Two: Implementation of the Information Security Assurance Assessment Model (ISAAM) according to the Information Security Domains consists of four chapters. This is the section where our evaluation model is put into a welldefined context with respect to the four pre-defined Information Security dimensions: the Organizational dimension, Functional dimension, Human dimension, and Legal dimension. Each Information Security dimension is discussed in a separate chapter. For each dimension, the following two-phase evaluation path is followed. The first phase concerns the identification of the elements which will constitute the basis of the evaluation: ? Identification of the key elements within the dimension; ? Identification of the Focus Areas for each dimension, consisting of the security issues identified for each dimension; ? Identification of the Specific Factors for each dimension, consisting of the security measures or control addressing the security issues identified for each dimension. The second phase concerns the evaluation of each Information Security dimension by: ? The implementation of the evaluation model, based on the elements identified for each dimension within the first phase, by identifying the security tasks, processes, procedures, and actions that should have been performed by the organization to reach the desired level of protection; ? The maturity model for each dimension as a basis for reliance on security. For each dimension we propose a generic maturity model that could be used by every organization in order to define its own security requirements. Part three of this dissertation contains the Final Remarks, Supporting Resources and Annexes. With reference to the objectives of our thesis, the Final Remarks briefly analyse whether these objectives were achieved and suggest directions for future related research. Supporting resources comprise the bibliographic resources that were used to elaborate and justify our approach. Annexes include all the relevant topics identified within the literature to illustrate certain aspects of our approach. Our Information Security evaluation model is based on and integrates different Information Security best practices, standards, methodologies and research expertise which can be combined in order to define an reliable categorization of Information Security. After the definition of terms and requirements, an evaluation process should be performed in order to obtain evidence that the Information Security within the organization in question is adequately managed. We have specifically integrated into our model the most useful elements of these sources of information in order to provide a generic model able to be implemented in all kinds of organizations. The value added by our evaluation model is that it is easy to implement and operate and answers concrete needs in terms of reliance upon an efficient and dynamic evaluation tool through a coherent evaluation system. On that basis, our model could be implemented internally within organizations, allowing them to govern better their Information Security. R��SUM�� : Contexte g��n��ral de la th��se L'��valuation de la s��curit�� en g��n��ral, et plus particuli��rement, celle de la s��curit�� de l'information, est devenue pour les organisations non seulement une mission cruciale �� r��aliser, mais aussi de plus en plus complexe. A l'heure actuelle, cette ��valuation se base principalement sur des m��thodologies, des bonnes pratiques, des normes ou des standards qui appr��hendent s��par��ment les diff��rents aspects qui composent la s��curit�� de l'information. Nous pensons que cette mani��re d'��valuer la s��curit�� est inefficiente, car elle ne tient pas compte de l'interaction des diff��rentes dimensions et composantes de la s��curit�� entre elles, bien qu'il soit admis depuis longtemps que le niveau de s��curit�� globale d'une organisation est toujours celui du maillon le plus faible de la cha��ne s��curitaire. Nous avons identifi�� le besoin d'une approche globale, int��gr��e, syst��mique et multidimensionnelle de l'��valuation de la s��curit�� de l'information. En effet, et c'est le point de d��part de notre th��se, nous d��montrons que seule une prise en compte globale de la s��curit�� permettra de r��pondre aux exigences de s��curit�� optimale ainsi qu'aux besoins de protection sp��cifiques d'une organisation. Ainsi, notre th��se propose un nouveau paradigme d'��valuation de la s��curit�� afin de satisfaire aux besoins d'efficacit�� et d'efficience d'une organisation donn��e. Nous proposons alors un mod��le qui vise �� ��valuer d'une mani��re holistique toutes les dimensions de la s��curit��, afin de minimiser la probabilit�� qu'une menace potentielle puisse exploiter des vuln��rabilit��s et engendrer des dommages directs ou indirects. Ce mod��le se base sur une structure formalis��e qui prend en compte tous les ��l��ments d'un syst��me ou programme de s��curit��. Ainsi, nous proposons un cadre m��thodologique d'��valuation qui consid��re la s��curit�� de l'information �� partir d'une perspective globale. Structure de la th��se et th��mes abord��s Notre document est structur�� en trois parties. La premi��re intitul��e : �� La probl��matique de l'��valuation de la s��curit�� de l'information �� est compos��e de quatre chapitres. Le chapitre 1 introduit l'objet de la recherche ainsi que les concepts de base du mod��le d'��valuation propos��. La mani��r�� traditionnelle de l'��valuation de la s��curit�� fait l'objet d'une analyse critique pour identifier les ��l��ments principaux et invariants �� prendre en compte dans notre approche holistique. Les ��l��ments de base de notre mod��le d'��valuation ainsi que son fonctionnement attendu sont ensuite pr��sent��s pour pouvoir tracer les r��sultats attendus de ce mod��le. Le chapitre 2 se focalise sur la d��finition de la notion de S��curit�� de l'Information. Il ne s'agit pas d'une red��finition de la notion de la s��curit��, mais d'une mise en perspectives des dimensions, crit��res, indicateurs �� utiliser comme base de r��f��rence, afin de d��terminer l'objet de l'��valuation qui sera utilis�� tout au long de notre travail. Les concepts inh��rents de ce qui constitue le caract��re holistique de la s��curit�� ainsi que les ��l��ments constitutifs d'un niveau de r��f��rence de s��curit�� sont d��finis en cons��quence. Ceci permet d'identifier ceux que nous avons d��nomm��s �� les racines de confiance ��. Le chapitre 3 pr��sente et analyse la diff��rence et les relations qui existent entre les processus de la Gestion des Risques et de la Gestion de la S��curit��, afin d'identifier les ��l��ments constitutifs du cadre de protection �� inclure dans notre mod��le d'��valuation. Le chapitre 4 est consacr�� �� la pr��sentation de notre mod��le d'��valuation Information Security Assurance Assessment Model (ISAAM) et la mani��re dont il r��pond aux exigences de l'��valuation telle que nous les avons pr��alablement pr��sent��es. Dans ce chapitre les concepts sous-jacents relatifs aux notions d'assurance et de confiance sont analys��s. En se basant sur ces deux concepts, la structure du mod��le d'��valuation est d��velopp��e pour obtenir une plateforme qui offre un certain niveau de garantie en s'appuyant sur trois attributs d'��valuation, �� savoir : �� la structure de confiance ��, �� la qualit�� du processus ��, et �� la r��alisation des exigences et des objectifs ��. Les probl��matiques li��es �� chacun de ces attributs d'��valuation sont analys��es en se basant sur l'��tat de l'art de la recherche et de la litt��rature, sur les diff��rentes m��thodes existantes ainsi que sur les normes et les standards les plus courants dans le domaine de la s��curit��. Sur cette base, trois diff��rents niveaux d'��valuation sont construits, �� savoir : le niveau d'assurance, le niveau de qualit�� et le niveau de maturit�� qui constituent la base de l'��valuation de l'��tat global de la s��curit�� d'une organisation. La deuxi��me partie: �� L'application du Mod��le d'��valuation de l'assurance de la s��curit�� de l'information par domaine de s��curit�� �� est elle aussi compos��e de quatre chapitres. Le mod��le d'��valuation d��j�� construit et analys�� est, dans cette partie, mis dans un contexte sp��cifique selon les quatre dimensions pr��d��finies de s��curit�� qui sont: la dimension Organisationnelle, la dimension Fonctionnelle, la dimension Humaine, et la dimension L��gale. Chacune de ces dimensions et son ��valuation sp��cifique fait l'objet d'un chapitre distinct. Pour chacune des dimensions, une ��valuation en deux phases est construite comme suit. La premi��re phase concerne l'identification des ��l��ments qui constituent la base de l'��valuation: ? Identification des ��l��ments cl��s de l'��valuation ; ? Identification des �� Focus Area �� pour chaque dimension qui repr��sentent les probl��matiques se trouvant dans la dimension ; ? Identification des �� Specific Factors �� pour chaque Focus Area qui repr��sentent les mesures de s��curit�� et de contr��le qui contribuent �� r��soudre ou �� diminuer les impacts des risques. La deuxi��me phase concerne l'��valuation de chaque dimension pr��c��demment pr��sent��es. Elle est constitu��e d'une part, de l'impl��mentation du mod��le g��n��ral d'��valuation �� la dimension concern��e en : ? Se basant sur les ��l��ments sp��cifi��s lors de la premi��re phase ; ? Identifiant les taches s��curitaires sp��cifiques, les processus, les proc��dures qui auraient d�� ��tre effectu��s pour atteindre le niveau de protection souhait��. D'autre part, l'��valuation de chaque dimension est compl��t��e par la proposition d'un mod��le de maturit�� sp��cifique �� chaque dimension, qui est �� consid��rer comme une base de r��f��rence pour le niveau global de s��curit��. Pour chaque dimension nous proposons un mod��le de maturit�� g��n��rique qui peut ��tre utilis�� par chaque organisation, afin de sp��cifier ses propres exigences en mati��re de s��curit��. Cela constitue une innovation dans le domaine de l'��valuation, que nous justifions pour chaque dimension et dont nous mettons syst��matiquement en avant la plus value apport��e. La troisi��me partie de notre document est relative �� la validation globale de notre proposition et contient en guise de conclusion, une mise en perspective critique de notre travail et des remarques finales. Cette derni��re partie est compl��t��e par une bibliographie et des annexes. Notre mod��le d'��valuation de la s��curit�� int��gre et se base sur de nombreuses sources d'expertise, telles que les bonnes pratiques, les normes, les standards, les m��thodes et l'expertise de la recherche scientifique du domaine. Notre proposition constructive r��pond �� un v��ritable probl��me non encore r��solu, auquel doivent faire face toutes les organisations, ind��pendamment de la taille et du profil. Cela permettrait �� ces derni��res de sp��cifier leurs exigences particuli��res en mati��re du niveau de s��curit�� �� satisfaire, d'instancier un processus d'��valuation sp��cifique �� leurs besoins afin qu'elles puissent s'assurer que leur s��curit�� de l'information soit g��r��e d'une mani��re appropri��e, offrant ainsi un certain niveau de confiance dans le degr�� de protection fourni. Nous avons int��gr�� dans notre mod��le le meilleur du savoir faire, de l'exp��rience et de l'expertise disponible actuellement au niveau international, dans le but de fournir un mod��le d'��valuation simple, g��n��rique et applicable �� un grand nombre d'organisations publiques ou priv��es. La valeur ajout��e de notre mod��le d'��valuation r��side pr��cis��ment dans le fait qu'il est suffisamment g��n��rique et facile �� impl��menter tout en apportant des r��ponses sur les besoins concrets des organisations. Ainsi notre proposition constitue un outil d'��valuation fiable, efficient et dynamique d��coulant d'une approche d'��valuation coh��rente. De ce fait, notre syst��me d'��valuation peut ��tre impl��ment�� �� l'interne par l'entreprise elle-m��me, sans recourir �� des ressources suppl��mentaires et lui donne ��galement ainsi la possibilit�� de mieux gouverner sa s��curit�� de l'information.

Contractor requirements for the control and security of TSCA confidential business information : security manual.

Mode of access: Internet.

21st National Information Systems Security Conference : building the information security bridge to the 21st century : October 5-8, 1998, Hyatt Regency Crystal City, Arlington, Va.

Cover title.