Virtual enterprises and the enterprise security architecture

Proceedings of 1995 New Security Paradigms Workshop Pub Date : 1995-08-01 DOI:10.1109/NSPW.1995.492344

Thomas Haigh

{"title":"Virtual enterprises and the enterprise security architecture","authors":"Thomas Haigh","doi":"10.1109/NSPW.1995.492344","DOIUrl":null,"url":null,"abstract":"The emergence of internetworked systems has given corporations and government agencies the opportunity to share information in unprecedented fashion. This sharing can be distributed across several enterprises. In effect, actual enterprises with shared interests can form virtual enterprises. There are significant security implications in this. An enterprise must not only protect the confidentiality and integrity of its own information; it must also protect the information of the virtual enterprises to which it belongs. We suggest that this can be considered as new security paradigm-the virtual enterprise security paradigm-which has a significant impact on security policy, architecture and mechanisms, and leads to an enterprise security architecture that is consistent with the trend toward client-server systems and is suitable for the emerging, internetworked environments now found in both the government and private sectors. In this paper, we describe the common themes and solution principles that led to this new view of computing and security. We then discuss the policy and architectural issues associated with the paradigm. We finish by drawing some tentative conclusions about the paradigm.","PeriodicalId":111230,"journal":{"name":"Proceedings of 1995 New Security Paradigms Workshop","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1995-08-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of 1995 New Security Paradigms Workshop","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NSPW.1995.492344","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

The emergence of internetworked systems has given corporations and government agencies the opportunity to share information in unprecedented fashion. This sharing can be distributed across several enterprises. In effect, actual enterprises with shared interests can form virtual enterprises. There are significant security implications in this. An enterprise must not only protect the confidentiality and integrity of its own information; it must also protect the information of the virtual enterprises to which it belongs. We suggest that this can be considered as new security paradigm-the virtual enterprise security paradigm-which has a significant impact on security policy, architecture and mechanisms, and leads to an enterprise security architecture that is consistent with the trend toward client-server systems and is suitable for the emerging, internetworked environments now found in both the government and private sectors. In this paper, we describe the common themes and solution principles that led to this new view of computing and security. We then discuss the policy and architectural issues associated with the paradigm. We finish by drawing some tentative conclusions about the paradigm.

查看原文本刊更多论文

虚拟企业和企业安全架构

网络系统的出现使公司和政府机构有机会以前所未有的方式共享信息。这种共享可以分布在多个企业之间。实际上，拥有共同利益的现实企业可以形成虚拟企业。这其中有重要的安全隐患。企业不仅要保护自身信息的保密性和完整性;它还必须保护其所属虚拟企业的信息。我们建议，这可以被视为一种新的安全范式——虚拟企业安全范式——它对安全政策、架构和机制产生了重大影响，并导致了一种与客户端-服务器系统趋势一致的企业安全架构，适用于现在在政府和私营部门中发现的新兴的互联网环境。在本文中，我们描述了导致这种计算和安全新观点的常见主题和解决方案原则。然后我们讨论与范例相关的策略和体系结构问题。最后，我们对范式作出了一些初步的结论。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of 1995 New Security Paradigms Workshop

自引率

0.00%

发文量