Security Management: Targets, Essentials and Implementations

We first analyze security targets of implementing security management for nowadays IT infrastructures – information systems created by enterprises for successful business, and detail possible measures for achieving relevant targets. Secondly, we conclude that the essentials of security management ar...

Full description

Saved in:
Bibliographic Details
Published inAdvances and Innovations in Systems, Computing Sciences and Software Engineering pp. 211 - 216
Main Authors Jing, Zhao, Jianwu, Zheng
Format Book Chapter
LanguageEnglish
Published Dordrecht Springer Netherlands
Subjects
Security Management
Smart Card
Soap Message
Symmetric Cryptography
Trust Negotiation
Online AccessGet full text

Cover

More Information
Summary:We first analyze security targets of implementing security management for nowadays IT infrastructures – information systems created by enterprises for successful business, and detail possible measures for achieving relevant targets. Secondly, we conclude that the essentials of security management are to construct trustworthy network endpoints, and to establish trustworthy communication channel between intending communication parties; then two instances of accomplishing the essentials of security management are exemplified, i.e. trustworthy smart card transaction and trustworthy SOA-Based Web Services. At last, we discuss the main aspects of implementing security management for information systems, precisely, strategic steps, i.e. (1) attestation and negotiation, (2) proposing and implementing application-specific strategies, and (3) considerations for strength and efficiency of security management.
ISBN:9781402062636
140206263X
DOI:10.1007/978-1-4020-6264-3_38