Methods
Organization of the company's SSI
Archive REF: H5120 V1
Methods
Organization of the company's SSI

Author : Robert LONGEON

Publication date: November 10, 2003, Review date: February 5, 2013 | Lire en français

Logo Techniques de l'Ingenieur You do not have access to this resource.
Request your free trial access! Free trial

Already subscribed?

4. Methods

There are several possible approaches to ISS. The first, and simplest, is the purely technical approach, with no explicit security policy: you don't want to touch the existing organization at all, just install a device that filters flows, logs service requests or partitions the network, for example. This type of security is based on automatic systems and corresponds to a predefined security "model" that is applied "intuitively" without prior study. Poor, unspecified and requiring little effort to design and implement, it offers protection only against a low-intensity threat. Does it protect against internal malicious acts? Have all the consequences of a security incident been considered? Do we know how to recover from a disaster? These and many other unanswered questions will resurface with force when the time comes. This way of thinking stems from concepts that are still very prevalent,...

You do not have access to this resource.
Logo Techniques de l'Ingenieur

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource. Click here to request your free trial access!

Already subscribed?

Article included in this offer

"Security of information systems"

( 87 articles )

Complete knowledge base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

View offer details
Contact us
Contact our team FAQ