Abstract
Among information system stakeholders, there are a variety of questions about the meaning of assurance (as the term pertains to information security), the means by which assurance is obtained, the means by which degrees of assurance can be differentiated, and the determination of a suitable level of investment specifically for building assurance. This paper identifies differences among stakeholders’ perceptions, which contribute to current assurance debates, and it proposes a model to help clarify assurance expectations in system acquisition, operation, and maintenance.
Chapter PDF
Similar content being viewed by others
References
Common Criteria Project, Common Criteria for Information Technology Security Evaluations,Version 2.0, May 1998. This is available and is expected to become ISO/LEC 15408 in early 1999.
National Institute of Standards and Technology. (August 1994) A Head Start on Assurance— Proceedings of an Invitational Workshop on Information Technology (IT) Assurance and Trustworthiness, March 21–23, 1994. Edited by M. D. Abrams and P. R. Toth, NISTIR 5472. This publication and additional material is available.
Williams, J. R. and Landoll, D. J. (November 30, 1995 ) A Framework for Reasoning about Assurance (Version 1.0), ARCA Document Number ATR 95044.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 1998 Springer Science+Business Media Dordrecht
About this chapter
Cite this chapter
Abrams, M.D., Landoll, D.J., Stoneburner, G. (1998). Assurance — What is it?. In: Jajodia, S., List, W., McGregor, G.W., Strous, L.A.M. (eds) Integrity and Internal Control in Information Systems. IICIS 1998. IFIP — The International Federation for Information Processing, vol 9. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35396-8_14
Download citation
DOI: https://doi.org/10.1007/978-0-387-35396-8_14
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-5533-6
Online ISBN: 978-0-387-35396-8
eBook Packages: Springer Book Archive