New OECD Guidelines for the Security of Information Systems and Networks


The aim of these new non-binding Guidelines, just published by OECD governments, is to develop a culture of security in an increasingly interconnected world.

http://www.oecd.org/pdf/M00033000/M00033191.pdf

All users of information technology, including governments, businesses and individuals, are urged to adhere to and implement nine basic principles in order to enhance online security: (1) security awareness; (2) responsibility; (3) quick response to security incidents; (4) respect for ethical values; (5) respect for democratic values; (6) risk assessment; (7) secuirty design and implementation; (8) security management; (9) reassessment. The text of the Guidelines is available at the URL above.


MMR 2002, Heft 10, XVII