Although the network security objectives that you develop depend on your particular situation, there are some general objectives you should consider:
- Protect your resources:
- Your Internet servers
- Your internal network, workstations, and systems
- Your data
- Your company image
- Provide your customers with safe Internet transactions. Ensure that the following conditions are in place:
- Communicating parties can identify each other (authentication).
- Unintended parties cannot read information exchanged between parties (confidentiality).
- Unauthorized parties cannot alter data (integrity).
- Participating parties cannot repudiate transactions (accountability).
Your
security policy should describe how you will fulfill these objectives.
0 comments:
Post a Comment