April 2010
Intermediate to advanced
2888 pages
111h 31m
English
Content preview from Wiley Handbook of Science and Technology for Homeland Security, 4 Volume SetBecome an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
CYBER SECURITY POLICY SPECIFICATION AND MANAGEMENT
SUSAN K. HINRICHS
University of Illinois at Urbana-Champaign and Network Geographics, Inc., Champaign, Illinois
1 INTRODUCTION
According to the Oxford English Dictionary, policy is defined as “a course or principle of action adopted or proposed by an organization or individual”. The policy defines how things should be, but it does not get into the details of how that principle of action should be enforced. Consider an organizational policy that states that employees may not use e-mail for personal correspondence. The policy defines a general goal that will not change frequently, but how that goal gets enforced may change over time. Perhaps initially it is enforced by procedure. The employees are informed that they are not to use e-mail for personal use, and the system administrator periodically spot checks the e-mail queues for personal mail. The system administrator may later deploy a tool to automate the detection of personal mail. By separating policy from enforcing mechanism, the longer term goals and constraints driving the organization are clear. The enforcing mechanisms are then free to evolve over time to best enforce the policy goals. Most organizations today use these high level natural language policies to drive all aspects of their operation from human resources to financial practices to security. If the natural language security policy could be formalized, a computer program could use the policy to directly provision ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.