文化大學機構典藏 CCUR:Item 987654321/24755
English  |  正體中文  |  简体中文  |  Items with full text/Total items : 46867/50733 (92%)
Visitors : 11881844      Online Users : 656
RC Version 6.0 © Powered By DSPACE, MIT. Enhanced by NTU Library IR team.
Scope Tips:
  • please add "double quotation mark" for query phrases to get precise results
  • please goto advance search for comprehansive author search
    •  Adv. Search
    HomeLoginUploadHelpAboutAdminister Goto mobile version


    Please use this identifier to cite or link to this item: https://irlib.pccu.edu.tw/handle/987654321/24755


    Title: 雲端服務之個人資料保護與資訊安全治理:根基於ISO/IEC JTC 1/SC 27之觀點
    Personal Information Protection in Cloud Computing and Information Security Governance Base on View Point of ISO/IEC JTC 1/SC 27
    Authors: 黃子恆
    Contributors: 資訊安全產業研發碩士專班
    Keywords: 資訊安全管理系統 ISMS
    資訊安全治理 ISG
    個人資料保護
    雲端運算
    Personal information protection
    Cloud computing
    Date: 2011
    Issue Date: 2013-08-14 15:50:58 (UTC+8)
    Abstract: 由於資訊安全議題是需要定期的維護及探討,使這些要求及規範達到其可用性、有效性、及完整性,國際標準(ISO)ISO/IEC JTC 1/SC 27各工作小組(Working Group)每六個月輪流在51個會員國家開會探討,本論文利用SC 27小組開會所提出的觀點,ISO/IEC JTC 1/SC27 N9001 和 ISO/IEC JTC 1/SC 27 N117來探討資訊安全治理之議題,ISO/IEC JTC 1/SC27 N8808 和 ISO/IEC JTC 1/SC27 N9226 探討個人資料之保護,由於資訊系統日益的變化,雲端運算之發展已勢不可當,企業或組織已被迫正式面對雲端運算上的各項資訊安全問題,由資訊安全治理到個人資料保護ISO/IEC JTC 1/SC27 已發文各會員針對雲端運算進行討論,ISO/IEC JTC 1/SC27 N9314 針對中小型企業於雲端運算的觀點做出了調查,並提出雲端技術對資訊安全的好處、存在風險、及資訊保證架構,由PCI DSS對ISO 27001標準做補充對雲端提供商及外包商提出控制措施建議。本論文根據ISO/IEC JTC 1/SC27 WG1和WG5所提出之文件來探討雲端運算於個人資料保護及資訊安全治理,並對其相關安全措施提出適當的建議。

    Information security requirement is necessary to maintain and discuss, which allow those requirements to reach availability, efficiency, integrity. Working groups in International Standard Organization ISO/IEC JTC 1/SC 27 will have meeting in 51different countries every 6 month. This these utilize ISO/IEC JTC 1/SC27 N9001 and ISO/IEC JTC 1/SC 27 N117 to discuss Information security governance, and use ISO/IEC JTC 1/SC27 N8808 and ISO/IEC JTC 1/SC27 N9226 to discuss Personal information security. Moreover, the information system is getting changed everyday, company or organizations has to be accept cloud computing is inevitably when face information security issues. ISO/IEC JTC 1/SC 27 has issued ISO/IEC JTC 1/SC27 N9314 to allow members to discuss SME perspective on cloud computing. Also has recommended the benefit, risk, and information assurance architechture of cloud computing in information security.Also ISO 27001 by the PCI DSS standards for the supplement of cloud providers andoutsourcing companies to provide recommendations for control measures.This these base on ISO / IEC JTC 1/SC27 WG1 and WG5 documents to discuss cloud computing on personal information protection and information security governance, and its associated security controls to make appropriatere commendations.
    Appears in Collections:[Department of Information Management & Graduate Institute of Information Management] Thesis

    Files in This Item:

    File Description SizeFormat
    gsweb732.pdf1612KbAdobe PDF1501View/Open


    View Licence

    All items in CCUR are protected by copyright, with all rights reserved.

    DSpace Software Copyright © 2002-2004  MIT &  Hewlett-Packard  /   Enhanced by   NTU Library IR team Copyright ©   - Feedback