Considerations regarding the protectionof classified information in electronic format

Author:Teodor Stefanescu
Position:Ph.D. Eng., Ministerul Economiei, Comertului si Mediului de Afaceri
Pages:270-280
SUMMARY

A common understanding of activity regarding the protection of classified information based on standards and policies is critical. In this respect the classified information protection in electronic format (INFOSEC) plays a vital role. In general terms, information security means protecting information and information systems from unauthorized access, use, disclosure, disruption, modification or... (see full summary)

 
FREE EXCERPT
270 Lex ET Scientia. Administrative Series
LESIJ NO. XVII, VOL. 2/2010
CONSIDERATIONS REGARDING THE PROTECTION OF CLASSIFIED
INFORMATION IN ELECTRONIC FORMAT
Teodor ŞTEFNESCU*
Abstract
A common understanding of activity regarding the protection of classified information
based on standards and policies is critical. In this respect the classified information protection in
electronic format (INFOSEC) plays a vital role. In general terms, information security means
protecting information and information systems from unauthorized access, use, disclosure,
disruption, modification or destruction. The terms as information security, computer security and
information assurance are frequently incorrectly used. These fields are interrelated often and
share the common goals of protecting the confidentiality, integrity and availability o f information;
however, there are some subtle differences between them. These differences cover primarily in the
approach to the subject, the methodologies used, and the areas of concentration. Information
security is concerned with the confidentiality, integrity and availability of data regardless of the
form the data may take: electronic, print, or other forms. The paper describes the activity
regarding the protection of classified information in electronic format (INFOSEC). The covered
domains are as follows: Legal framework; Security classification for info rmation; INFOSEC
essentials; INFOSEC components.
Keywords: Classified information, INFOSEC, vulnerabilities, threats, accreditation,
certification
Introduction
Computer security can focus on ensuring the availability and correct operation of a
computer system without concern for the information stored or processed by the computer.
Governments, military, corporations, financial institutions, hospitals, and private businesses
amass a great deal of confidential information about their employees, customers, products,
research, and financial status. Most of this information is now collected, processed and stored on
electronic computers and transmitted across networks to other computers.
Confidential information about a business' customers or finances or new product line could
fall into the hands of a competitor, or a breach of security could lead to lost business, or even
bankruptcy of the business. Protecting confidential information is a business requirement, and in
many cases also an ethical and legal requirement.
For the individual, information security has a significant effect on privacy, which is viewed
very differently in different cultures. The field of information security has grown and evolved
significantly in recent years.

* Ph.D. Eng., Ministerul Economiei, Comerului şi Mediului de Afaceri, teodor_stefanescu@yahoo.com

To continue reading

REQUEST YOUR TRIAL