Accountability policy defining responsibilities of users, operations staff, and management
Specifying an audit capability, and incident handling guidelines
What to do and who to contact if an intrusion is detected
Authentication policy: trust through a password
Setting guidelines for remote authentication
Availability statement setting expectations for the availability of resources
Addressing redundancy and recovery issues, specifying operating hours and maintenance down-time periods
II. Social solutions
| Previous slide | Next slide | Back to first slide | View graphic version |