Pohjois-Suomen tietoturvallisuusverkosto

The book was published by Artech House, Boston/London in 2008. The experts that contributed to this book come from a wide range of backgrounds. Many of them have also been active in the events of our information security network of the Northern Finland. The writers have endeavored to provide up-to-date information addressing security and related emerging technologies from all of its facets - mathematical, engineering, legal, social, privacy and forensics, education, training awareness, and managerial, which includes chapters on the following:

• Basics of security concepts, services, and threats
• Models for quality of the business integrated information security management
• Principles of user authentication technologies
• Principles of authorization and access control and their applications
• Security of data-centric applications
• Principles of modern cryptology and new research challenges in this field
• Network security and its dynamics
• Public key and privilege management infrastructures
• Architectural and functional characteristics of smart cards and similar tokens
• Privacy issues and privacy-enhancing technologies from legal and technical perspectives
• Legal and technical issues relating to secure content-filtering technologies
• A model for cybercrime investigations for forensic examination and presentation
• Systemic-holistic approach to IT security with subjective details based on objective knowledge
• Secure electronic voting systems using cryptology models and protocols
• Requirements and architecture for mobile wiki systems security

Chapter 3 in the book (pages 21 ... 34) on “Business-integrated information security management” was made by Juhani Anttila, Jorma Kajava, Rauno Varonen and Gerald Quirchmayr.

This topic has also been considered in Finnish and in English in two previous blog posts: #1 and #2