Page 6 - index
P. 6
RESEARCH, ANALYSIS & TRENDS
Downright security will always remain a
pipe dream of the digital industry
Since security and privacy are paramount in today’s Integrity in information security means main-
highly connected world, security-conscious organiza- taining and assuring the accuracy and consistency
tions depend heavily on software solutions to keep their of data over its entire life-cycle, implying that data
data safe and their information private. cannot be modified in an unauthorized or undetect-
ed manner. Information security systems typically
Security is a necessary precondition for the operational provide message integrity in addition to data confi-
use of information systems and informational self- dentiality.
determination. The more it is a pity that the actual rele-
vance of IT security is often only recognized when ab- Availability is a must for any information sys-
sent, so that respecting compliance requirements for all tem to serve its purpose when it is needed. This
areas where computers are used remains challenging. means that the computing systems used to store
and process the information, the security controls
Although, the industry is continuously working hard to used to protect it, and the communication channels
make the Internet more secure for users, dealing with used to access it must be functioning correctly and
more and more complex business processes and tech- be available at all times, preventing service disrup-
nologies make it hard for users to gain confidence re- tions due to power outages, hardware failures, and
garding security issues. system upgrades. Ensuring availability also in-
volves preventing denial-of-service attacks.
At least, the confidentiality, integrity, and availability
(CIA) triad, one of the core principles of information se- Of course, there are more fine-tuned concepts as well,
curity, I want to highlight again: such as the nine generally accepted principles of the
OECD Guidelines for the Security of Information Sys-
Confidentiality refers to preventing the disclo- tems and Networks, which are awareness, responsibil-
sure of information to unauthorized individuals or ity, response, ethics, democracy, risk assessment, se-
systems, enforced usually by encryption or by limit- curity design and implementation, security manage-
ing the places where it might appear (in databases, ment, and reassessment, or the Engineering Principles
log files, backups, printed receipts, and so on), and for Information Technology Security of the National In-
by restricting access to the places where it is stored. stitute of Standards and Technology (NIST) that even
Actually, confidentiality is necessary for maintaining proposes 33 principles, to name just a few.
the privacy of the people whose personal infor-
mation a system holds.
6 Asian eMarketing - August 2016: Security meets Real-Time Marketing Challenges
Downright security will always remain a
pipe dream of the digital industry
Since security and privacy are paramount in today’s Integrity in information security means main-
highly connected world, security-conscious organiza- taining and assuring the accuracy and consistency
tions depend heavily on software solutions to keep their of data over its entire life-cycle, implying that data
data safe and their information private. cannot be modified in an unauthorized or undetect-
ed manner. Information security systems typically
Security is a necessary precondition for the operational provide message integrity in addition to data confi-
use of information systems and informational self- dentiality.
determination. The more it is a pity that the actual rele-
vance of IT security is often only recognized when ab- Availability is a must for any information sys-
sent, so that respecting compliance requirements for all tem to serve its purpose when it is needed. This
areas where computers are used remains challenging. means that the computing systems used to store
and process the information, the security controls
Although, the industry is continuously working hard to used to protect it, and the communication channels
make the Internet more secure for users, dealing with used to access it must be functioning correctly and
more and more complex business processes and tech- be available at all times, preventing service disrup-
nologies make it hard for users to gain confidence re- tions due to power outages, hardware failures, and
garding security issues. system upgrades. Ensuring availability also in-
volves preventing denial-of-service attacks.
At least, the confidentiality, integrity, and availability
(CIA) triad, one of the core principles of information se- Of course, there are more fine-tuned concepts as well,
curity, I want to highlight again: such as the nine generally accepted principles of the
OECD Guidelines for the Security of Information Sys-
Confidentiality refers to preventing the disclo- tems and Networks, which are awareness, responsibil-
sure of information to unauthorized individuals or ity, response, ethics, democracy, risk assessment, se-
systems, enforced usually by encryption or by limit- curity design and implementation, security manage-
ing the places where it might appear (in databases, ment, and reassessment, or the Engineering Principles
log files, backups, printed receipts, and so on), and for Information Technology Security of the National In-
by restricting access to the places where it is stored. stitute of Standards and Technology (NIST) that even
Actually, confidentiality is necessary for maintaining proposes 33 principles, to name just a few.
the privacy of the people whose personal infor-
mation a system holds.
6 Asian eMarketing - August 2016: Security meets Real-Time Marketing Challenges
