The Organisation for Economic Co-Operation and Development (OECD) recently disseminated efforts pursued by its member states in the adoption of Guidelines intended to promote a "culture of security" in Information Systems and Networks.
The OECD recommends adoption of these Guidelines in order to increase confidence of governments, business and individual users when using information systems and networks. The Guidelines are fruit of the wide consensus achieved within the organisation, as the first anniversary of the events of September 11, 2001 draws close.
The Autoridade Nacional de Comunicações (ANACOM) was represented in the working group that drew up these Guidelines, adopted by the Recommendation of the OECD Council on July 25, 2002.
The measures are based on 9 principles: awareness; responsibility; response; ethics; democracy; risk assessment; security design and implementation; security management, reassessment.
The spirit of the new Guidelines, in terms of security, should be interpreted in association with other previously adopted Guidelines on related topics: privacy (OECD Guidelines governing the protection of privacy and transborder flows of personal data) and cryptography (OECD Guidelines for Cryptography Policy), of 1980 and 1997, respectively.
The new Guidelines substitute the first guidelines issued by the OECD, adopted in 1992 and reviewed in 1997. The new guidelines will be reviewed in five years' time.
For further information, consult:
OECD Governments Launch Drive to Improve Security of Online Networks http://www.oecd.org/document/53/0,2340,en_2649_34255_1946997_1_1_1_1,00.html
Frequently Asked Questionshttps://www.anacom.pt/render.jsp?categoryId=41931
Guidelines - original documents:
English version * French version *
Spanish version *
-----
* The information provided belongs to OECD.
