Mon Sep 29 18:51:30 PDT 2014

Control Architecture: How does the enterprise model information-related controls?


Options:

The description is up to them.

Decision:

A control architecture should be in place to include, without limit, protection objectives, access control, original identification, authentication, access facilitation, trust, and change management.

Basis:

Enterprises use implicit or explicit models as the basis for decision-making with regard to information protection and to structure the way they think about the issues.
Copyright(c) Fred Cohen, 1988-2012 - All Rights Reserved