IT-security in electronic commerce: from cost to value driver

Proceedings. Tenth International Workshop on Database and Expert Systems Applications. DEXA 99 Pub Date : 1999-09-01 DOI:10.1109/DEXA.1999.795288

R. Holbein, Thomas Gaugler

{"title":"IT-security in electronic commerce: from cost to value driver","authors":"R. Holbein, Thomas Gaugler","doi":"10.1109/DEXA.1999.795288","DOIUrl":null,"url":null,"abstract":"We systematically discuss the role of IT security regarding electronic commerce (EC) and show that business success in EC heavily depends on IT security and moreover, it even emerges to a business enabler for professional EC. For that reason, we call IT security a value driver and introduce a first proposal for quantification of benefits that will allow to improve economic calculations in security management. In order to appropriately address the role of IT security, this must be done in a highly professional way. Therefore, we introduce a management approach that has been designed for enterprise-wide as well as daily business handling of IT security within EC environments. As part of this approach, we aim to support decisions on the appropriateness of security measures by introducing the quantification of IT security benefit. This will allow IT security to be managed more efficiently in the future. The paper is intended as a starting point to define and improve methods and procedures for determining efficient balances between IT security costs and benefits.","PeriodicalId":276867,"journal":{"name":"Proceedings. Tenth International Workshop on Database and Expert Systems Applications. DEXA 99","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1999-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings. Tenth International Workshop on Database and Expert Systems Applications. DEXA 99","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DEXA.1999.795288","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

We systematically discuss the role of IT security regarding electronic commerce (EC) and show that business success in EC heavily depends on IT security and moreover, it even emerges to a business enabler for professional EC. For that reason, we call IT security a value driver and introduce a first proposal for quantification of benefits that will allow to improve economic calculations in security management. In order to appropriately address the role of IT security, this must be done in a highly professional way. Therefore, we introduce a management approach that has been designed for enterprise-wide as well as daily business handling of IT security within EC environments. As part of this approach, we aim to support decisions on the appropriateness of security measures by introducing the quantification of IT security benefit. This will allow IT security to be managed more efficiently in the future. The paper is intended as a starting point to define and improve methods and procedures for determining efficient balances between IT security costs and benefits.

查看原文本刊更多论文

电子商务中的it安全:从成本到价值驱动

我们系统地讨论了IT安全在电子商务(EC)中的作用，并表明电子商务的业务成功在很大程度上取决于IT安全，而且，IT安全甚至成为专业电子商务的业务推动者。出于这个原因，我们将IT安全称为一个价值驱动程序，并引入第一个量化收益的建议，这将允许改进安全管理中的经济计算。为了适当地处理IT安全的角色，这必须以高度专业的方式完成。因此，我们引入了一种专为企业范围以及EC环境中IT安全的日常业务处理而设计的管理方法。作为此方法的一部分，我们的目标是通过引入IT安全效益的量化来支持有关安全措施适当性的决策。这将允许在未来更有效地管理IT安全。本文旨在作为定义和改进确定IT安全成本和收益之间有效平衡的方法和过程的起点。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings. Tenth International Workshop on Database and Expert Systems Applications. DEXA 99

自引率

0.00%

发文量