Cargando…
Defining Information Security
This article proposes a new definition of information security, the ‘Appropriate Access’ definition. Apart from providing the basic criteria for a definition—correct demarcation and meaning concerning the state of security—it also aims at being a definition suitable for any information security pers...
| Autores principales: | , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
Springer Netherlands
2017
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6450831/ https://www.ncbi.nlm.nih.gov/pubmed/29143269 http://dx.doi.org/10.1007/s11948-017-9992-1 |
| _version_ | 1783409074507874304 |
|---|---|
| author | Lundgren, Björn Möller, Niklas |
| author_facet | Lundgren, Björn Möller, Niklas |
| author_sort | Lundgren, Björn |
| collection | PubMed |
| description | This article proposes a new definition of information security, the ‘Appropriate Access’ definition. Apart from providing the basic criteria for a definition—correct demarcation and meaning concerning the state of security—it also aims at being a definition suitable for any information security perspective. As such, it bridges the conceptual divide between so-called ‘soft issues’ of information security (those including, e.g., humans, organizations, culture, ethics, policies, and law) and more technical issues. Because of this it is also suitable for various analytical purposes, such as analysing possible security breaches, or for studying conflicting attitudes on security in an organization. The need for a new definition is demonstrated by pointing to a number of problems for the standard definition type of information security—the so-called CIA definition. Besides being too broad as well as too narrow, it cannot properly handle the soft issues of information security, nor recognize the contextual and normative nature of security. |
| format | Online Article Text |
| id | pubmed-6450831 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2017 |
| publisher | Springer Netherlands |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-64508312019-04-17 Defining Information Security Lundgren, Björn Möller, Niklas Sci Eng Ethics Original Paper This article proposes a new definition of information security, the ‘Appropriate Access’ definition. Apart from providing the basic criteria for a definition—correct demarcation and meaning concerning the state of security—it also aims at being a definition suitable for any information security perspective. As such, it bridges the conceptual divide between so-called ‘soft issues’ of information security (those including, e.g., humans, organizations, culture, ethics, policies, and law) and more technical issues. Because of this it is also suitable for various analytical purposes, such as analysing possible security breaches, or for studying conflicting attitudes on security in an organization. The need for a new definition is demonstrated by pointing to a number of problems for the standard definition type of information security—the so-called CIA definition. Besides being too broad as well as too narrow, it cannot properly handle the soft issues of information security, nor recognize the contextual and normative nature of security. Springer Netherlands 2017-11-15 2019 /pmc/articles/PMC6450831/ /pubmed/29143269 http://dx.doi.org/10.1007/s11948-017-9992-1 Text en © The Author(s) 2017 Open AccessThis article is distributed under the terms of the Creative Commons Attribution 4.0 International License (http://creativecommons.org/licenses/by/4.0/), which permits unrestricted use, distribution, and reproduction in any medium, provided you give appropriate credit to the original author(s) and the source, provide a link to the Creative Commons license, and indicate if changes were made. |
| spellingShingle | Original Paper Lundgren, Björn Möller, Niklas Defining Information Security |
| title | Defining Information Security |
| title_full | Defining Information Security |
| title_fullStr | Defining Information Security |
| title_full_unstemmed | Defining Information Security |
| title_short | Defining Information Security |
| title_sort | defining information security |
| topic | Original Paper |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6450831/ https://www.ncbi.nlm.nih.gov/pubmed/29143269 http://dx.doi.org/10.1007/s11948-017-9992-1 |
| work_keys_str_mv | AT lundgrenbjorn defininginformationsecurity AT mollerniklas defininginformationsecurity |