Additional Information and References
Principles for Electronic Authentication
A Canadian Framework
OECD Guidelines for the Security of Information Systems and Networks
Participants should be aware of the need for security of information systems and networks and what they can do to enhance security.
All participants are responsible for the security of information systems and networks.
Participants should act in a timely and co-operative manner to prevent, detect and respond to security incidents.
Participants should respect the legitimate interests of others.
The security of information systems and networks should be compatible with essential values of a democratic society.
6. Risk Assessment
Participants should conduct risk assessments.
7. Security Design and Implementation
Participants should incorporate security as an essential element of information systems and networks
8. Security Management
Participants should adopt a comprehensive approach to security management.
Participants should review and reassess the security of information systems and networks, and make appropriate modifications to security policies, practices, measures and procedures.
A list of general references, as well as a list of domestic and international references and source documents specific to each Principle.
- Date modified: