Computer security policy: Important issues

TL;DR: The issue of risk analysis is addressed in view of an overall information security plan to address the selection of computer security countermeasures.

TL;DR: The objective of this paper is to design a methodology for the introduction, development and maintenance of computer security within major organizations.

TL;DR: The helminthiasis (infestation with, or disease caused by parasitic worms) of the Internet was the result of a self-replicating program that infected VAX computers and SUN-3 workstations running the 4.2 and 4.3 Berkeley UNIX code.

TL;DR: This research examines the experience of a large Australian university in implementing information security risk assessment and identifies a set of factors that exert considerable influence on the four stages of risk assessment initiative of the university.

TL;DR: This paper will critically review the gap between theory and practice, and will justify some bold statements by quoting examples from the author's practice.

TL;DR: Modifications to system controls appropriate to both standalone and networked microcomputers are suggested, including ways of creating an environment for microcomputing and methods of achieving data integrity and security.

TL;DR: This article discusses the managerial perspectives with which an appropriate balance between the managerial and the technical may be struck and illuminates some tried-and-true methods associated with organizational design, raising the level of management awareness, and obtaining needed resources.

TL;DR: The primary goal of this paper is to provide a simplified process which can be used for the selection of a security package based on a formula, which results in a single measure by weighing the security features in a package against the requirements as set by management.