25
2.1.6 Network Security Standardizations and Guidelines
In
order
to
efficiently
administer
information
technology or
network
security
management, high
quality standards and
guidelines are
issued
by
many
standardization
institutions and
implemented in
many organizations. The standards are provided to guide
the
establishment
and
maintenance of,
in
this
case,
secure
systems
in
IT
security
environment
to
facilitate
solution
interoperability and
development of
well-established
technology.
The
purpose
of
entrenched
standardizations in
security
is
relevant
for
organizations in order that
network security-related measurements are well achieved and
procedures
in
deploying
and
maintaining security
equipments are
well
functioned.
Accordingly, the
following are
security standards and
guidelines that
are
brought
up
by
many security-associated parties and organizations.
2.1.6.1 International Organization for Standardizations (ISO)
As
a
worldwide-certified provider
of
standardizations
for
many
kinds
of
application
and
management procedures,
ISO
has
been
well
recognized
by
many
organizations. Standard
achievement
has
become
more
important
in
dealing
with
advanced
technology
and
complexity
of
issue
and
predicament. ISO
is
prominent
in
providing
standards
that
help
organizations to
achieve
the
effectiveness
of
major
organizational procedure.
ISO
also
has
provided
standards
regarding
to
the
relevance
of
IT
and
network
security management and functionality. The concern of this issue lies with standard ISO
17799, which is now changed to ISO 27000. It has been known as a very comprehensive
standard to
its security coverage, containing numbers of
organizational controls to
have
 |