| 黄水清,任妮.对《数字图书馆安全管理指南》及其“解读”的辨析[J].中国图书馆学报,2012,38(1):0 |
| The Analysis of A Guide to Digital Library Security Management and Its Interpretation |
| 对《数字图书馆安全管理指南》及其“解读”的辨析 |
| |
| DOI: |
| Key words:A Guide to Digital library Security Management,Lnformation security management,ISO 27000 |
| 中文关键词: 数字图书馆安全管理指南 信息安全管理 ISO 27000 |
| 基金项目: |
|
| Hits: 4440 |
| Download times: 2369 |
| Abstract: |
| This paper conducted a comprehensive review of the ISO27000 series of standards and related research on information security management in digital libraries. In particular, we pointed out the flaws and misunderstandings in A Guide to Digital Library Security Management and The Interpretation of A Guide to Digital Library Security Management from four perspectives including related concepts, selection of standards, implementation processes, and control measurements. We then suggested approaches to improve information security management in digital libraries, which has useful practical implications for the development of digital libraries.1 tab. 22 refs. |
| 中文摘要: |
| 《数字图书馆安全管理指南》及《〈数字图书馆安全管理指南〉解读》存在不当之处,尤其是对于ISO 27000以及风险管理相关定义和流程的理解存在偏差。本文结合ISO 27000系列标准以及数字图书馆信息安全领域的调查数据,针对存在的问题依次从数字图书馆安全管理的相关概念、依从标准选择、实施流程、控制要素四个角度进行辨析,旨在梳理ISO 27000系列的各个标准之间以及信息安全相关概念及要素之间的相互关系,以利于将其合理准确地运用在数字图书馆领域。表1。参考文献22。 |
|
View Full Text
View/Add Comment Download reader |
