RE: towards a taxonomy of Information Assurance

[InfoSec News <isn () c4i org>]

Forwarded from: Anne & Lynn Wheeler <lynn () garlic com>

One of the references is the work I've done on merged glossary and
taxonomy ... one of which is for straight security (but also X9F
standards activities, as well as payments and financial) ... aka 
http://www.garlic.com/~lynn/index.html#glossary

with sources and description at 
http://www.garlic.com/~lynn/index.html#glosnotes

some number of the referenced sources, now also cross-reference the
garlic web pages.

One of the original issues was trying to draw the thread between risk
management and information security ... aka 
http://www.garlic.com/~lynn/aepay3.htm#riskm

Another of the issues prompting this was parameterized risk management
providing a security infrastructure that supported multiple types and
levels of security as well as existing over a long period of time (aka
if the infrastructure could support multiple different levels
concurrently at the same time .... then new levels could be introduced
over time w/o totally obsoleting the existing infrastructure).


-- 
Anne & Lynn Wheeler -  http://www.garlic.com/~lynn/ 



-
ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn'
in the BODY of the mail.