An toan thong tin la hanh đ?ng ng?n c?n, phong ng?a s? s? d?ng, truy c?p, ti?t l?, chia s?, phat tan, ghi l?i ho?c pha h?y thong tin ch?a co s? cho phep. Ngay nay v?n đ? an toan thong tin đ??c xem la m?t trong nh?ng quan tam hang đ?u c?a xa h?i, co ?nh h??ng r?t nhi?u đ?n h?u h?t cac nganh khoa h?c t? nhien , k? thu?t , khoa h?c xa h?i va kinh t? .

đ?nh ngh?a [ s?a | s?a ma ngu?n ]

An toan thong tin (Information Security) la vi?c b?o v? ch?ng truy nh?p, s?

d?ng, ti?t l?, s?a đ?i, ho?c pha h?y thong tin m?t cach trai phep.

An toan thong tin con bao g?m c? vi?c đ?m b?o an toan cho cac thanh ph?n,

ho?c h? th?ng đ??c s? d?ng đ? qu?n ly, l?u tr?, x? ly va trao đ?i thong tin.

Tieu chu?n [ s?a | s?a ma ngu?n ]

Tren tr??ng qu?c t? Tieu chu?n Anh BS 7799 "H??ng d?n v? qu?n ly an toan thong tin", đ??c cong b? l?n đ?u tien vao n?m 1995 , đa đ??c ch?p nh?n. Xu?t phat t? ph?n 1 c?a Tieu chu?n Anh BS 77999 la tieu chu?n ISO/IEC 17799:2000 ma hi?n nay t?n t?i d??i phien b?n đ??c s?a đ?i ISO/IEC 17799:2005 .

N?i dung ISO/IEC 17799:2005 bao g?m 134 bi?n phap cho an toan thong tin va đ??c chia thanh 12 nhom:

• Chinh sach an toan thong tin ( Information security policy ): ch? th? va h??ng d?n v? an toan thong tin
• T? ch?c an toan thong tin ( Organization of information security ): t? ch?c bi?n phap an toan va quy trinh qu?n ly.
• Qu?n ly tai s?n ( Asset management ): trach nhi?m va phan lo?i gia tr? thong tin
• An toan tai nguyen con ng??i ( Human resource security ): b?o đ?m an toan
• An toan v?t ly va moi tr??ng ( Physical and environmental security )
• Qu?n ly v?n hanh va trao đ?i thong tin ( Communications and operations management )
• Ki?m soat truy c?p ( Access control )
• Thu nh?n, phat tri?n va b?o qu?n cac h? th?ng thong tin ( Information systems acquisition, development and maintenance )
• Qu?n ly s? c? m?t an toan thong tin ( Information security incident management )
• Qu?n ly duy tri kh? n?ng t?n t?i c?a doanh nghi?p ( Business continuity management )
• Tuan th? cac quy đ?nh phap lu?t ( Compliance )
• Qu?n ly r?i ro ( Risk Management )

Tieu chu?n ISO/IEC 27001:2005 phat tri?n t? ph?n 2 c?a BS 7799. Tieu chu?n nay quy đ?nh cac yeu c?u đ?i v?i m?t h? th?ng qu?n ly an toan thong tin va t??ng t? nh? ISO 9001 la m?t tieu chu?n v? qu?n ly co th? đ??c c?p gi?y ch?ng nh?n.

đ?c them [ s?a | s?a ma ngu?n ]

• B?o v? d? li?u ca nhan
• An toan d? li?u
• Danh sach cac tr??ng đ?i h?c tr?ng đi?m đao t?o nhan l?c an toan thong tin ? Vi?t Nam

Tham kh?o [ s?a | s?a ma ngu?n ]

Lien k?t ngoai [ s?a | s?a ma ngu?n ]

Wikimedia Commons co them hinh ?nh va ph??ng ti?n truy?n t?i v? An toan thong tin .

• CERT Coordination Center
• ISMS International User Group www.xisec.org
• ISC2
• SecureStandard Information Security Whitepapers
• InfoSec Training Media Archive- Videos and Poster
• Information Security Investigations L?u tr? 2009-02-24 t?i Wayback Machine
• National Information Assurance (IA) Glossary L?u tr? 2012-02-27 t?i Wayback Machine
• RFC-2828: Internet Security Glossary
• Cac Thu?t Ng? V? An Toan Thong Tin