Page 170 - DCAP309_INFORMATION_SECURITY_AND

Page 170 - DCAP309_INFORMATION_SECURITY_AND_PRIVACY

P. 170

Information Security and Privacy Mithilesh Kumar Dubey, Lovely Professional University

Notes Unit 12: Security Metrics and Privacy

CONTENTS
Objectives
Introduction
12.1 Introduction to Security Metrics

12.2 Basics
12.2.1 Background
12.2.2 Security Metrics Management: More than Measurement
12.2.3 Issues/Aspects of Security Measurement
12.2.4 The Value of Security Metrics
12.3 Security Matrix
12.4 Security Metrics Classification

12.5 Privacy
12.6 Business Issue
12.7 Privacy vs Security
12.8 Related Terms
12.9 Information Privacy Principles (IPPs)
12.9.1 IPP 1: Collection
12.9.2 IPP 2: Use and Disclosure
12.9.3 IPP 3: Data Quality
12.9.4 IPP 4: Data Security

12.9.5 IPP 5: Openness
12.9.6 IPP 6: Access and Correction
12.9.7 IPP 7: Identifiers
12.9.8 IPP 8: Anonymity
12.9.9 IPP 9: Transporter Data Flows
12.9.10 IPP 10: Sensitive Information
12.10 Summary

12.11 Keywords
12.12 Review Questions
12.13 Further Readings

Objectives

After studying this unit, you will be able to:
 Understand the concept of security metrics

 Discuss basics of security metrics

164 LOVELY PROFESSIONAL UNIVERSITY

165 166 167 168 169 170 171 172 173 174 175