New OECD Guidelines for the Security of Information Systems and Networks

The aim of these new non-binding Guidelines, just published by OECD governments, is to develop a culture of security in an increasingly interconnected world.

All users of information technology, including governments, businesses and individuals, are urged to adhere to and implement nine basic principles in order to enhance online security: (1) security awareness; (2) responsibility; (3) quick response to security incidents; (4) respect for ethical values; (5) respect for democratic values; (6) risk assessment; (7) secuirty design and implementation; (8) security management; (9) reassessment. The text of the Guidelines is available at the URL above.

MMR 2002, Heft 10, XVII