Privacy Maturity Model PMM, by AICPA/CICA

Posted on 22 March 2012 by Admin

The AICPA/CICA has produced Privacy Maturity Model (PMM).

CICA: The Canadian Institute of Chartered Accountants (CICA) represents Canada’s CA profession both nationally and internationally. The CICA is a founding member of the International Federation of Accountants (IFAC) and the Global Accounting Alliance (GAA).

AICPA: The American Institute of Certified Public Accountants, founded in 1887, is the world’s largest association representing the accounting profession, with nearly 377,000 members in 128 countries. The AICPA sets ethical standards for the profession and U.S. auditing standards for audits of private companies, non-profit organizations and federal, state and local governments.

The PMM uses five maturity levels as follows:

  • Ad hoc – procedures or processes are generally informal, incomplete, and inconsistently applied.
  • Repeatable – procedures or processes exist; however, they are not fully documented and do not cover all relevant aspects.
  • Defined – procedures and processes are fully documented and implemented, and cover all relevant aspects.
  • Managed – reviews are conducted to assess the effectiveness of the controls in place.
  • Optimized – regular review and feedback are used to ensure continuous improvement towards optimization of the given process.

The figure below is from a presentation given at a symposium.

PMM

PMM is based on Generally Accepted Privacy Principles (GAPP) and the Capability Maturity Model (CMM).

 

Links

  • CMMI: Capability Maturity Model Integration (CMMI) is a process improvement approach whose goal is to help organizations improve their performance. CMMI can be used to guide process improvement across a project, a division, or an entire organization.
  • CICA Privacy pages:
Posted in Privacy, Security Standardization and Practises, Security Training, Awareness and Reports | Comments Off on Privacy Maturity Model PMM, by AICPA/CICA

Electropedia, an online electronic terminology database

Posted on 16 March 2012 by Admin

Electropedia is an online vocabulary with more than 20000 definitions.electropedia

It is produced by IEC.

The International Electrotechnical Commission (IEC) is the world’s leading organization that prepares and publishes International Standards for all electrical, electronic and related technologies.

One can give the search term in english or french, and the result is given in several languages: Arabic, Chinese, German, Italian, Japanese, Portuguese, Polish, Russian, Spanish and Swedish (coverage varies by subject area).

For example, for term “gateway”, it gives:

gateway
functional unit that connects two computer networks with different network architectures and protocols

NOTE 1 – The computer networks may be local area networks, wide area networks, or other types of networks.

NOTE 2 – Examples of gateways are a LAN gateway, a mail gateway.

For full example, see link for “gateway” definition.

Posted in Definitions, ICT Terminology | Comments Off on Electropedia, an online electronic terminology database

Definitions database by ETSI

Posted on 16 March 2012 by Admin

ETSI is providing definitions database (TEDDI) access online.

For example, for base station it gives:

A base station is a network element in radio access network responsible for radio transmission and reception in one or more cells to or from the user equipment. A base station can have an integrated antenna or be connected to an antenna by feeder cables.
In UTRAN it terminates the Iub interface towards the RNC. In GERAN it terminates the Abis interface towards the BSC

Posted in Definitions, ICT Terminology | Comments Off on Definitions database by ETSI

Finnish<->English vocabulary by Finnish terminology centre

Posted on 16 March 2012 by Admin

Finnish Terminology Centre offers vocabularies online.

One can write the term in english or in finnish, and the result term is given in both languages. The description of the term is given in finnish.

Example

For example for term Cookie, it gives

fi eväste
mieluummin kuin: pipari; keksi
en cookie; magic cookie

määritelmä
aputiedosto tai tunniste, jonka sisältämiä tietoja voidaan käyttää selaimen ja palvelimen välisen yhteydenpidon ohjaamiseen

huomautus
Palvelimet voivat tarjota käyttäjän selaimelle evästeitä moniin tarkoituksiin, esimerkiksi palvelun käyttäjäprofiilin muodostamiseksi myöhempiä yhteydenottoja varten. Vrt. käyttäjäprofiili.

Posted in Definitions, ICT Terminology | Comments Off on Finnish<->English vocabulary by Finnish terminology centre

Who-is-who on Information Security, Europe by ENISA

Posted on 16 March 2012 by Admin

ENISA‘s who-is-who Directory on Network and Information Security 2011 is good source of information to search for security organizations within different european countries.

enisa-whoiswho

Posted in Definitions, Security Organizations | Comments Off on Who-is-who on Information Security, Europe by ENISA

Telecommunications Regulation Handbook

Posted on 16 March 2012 by Admin

10th edition of “Telecommunications Regulation Handbook” is available via InfoDev.

Telcoregulatorhandbook

 

Content

  • Chapter 1 – The big picture: Introduction to telecommunications regulation
  • Chapter 2 – A level playing field: regulating for effective competition
  • Chapter 3 – Growing the market: licensing and authorizing services
  • Chapter 4 – Going mobile: managing the spectrum
  • Chapter 5 – From capacity to connectivity: network access and interconnection
  • Chapter 6 – From availability to use: universal access and service
  • Chapter 7 – A digital future: regulatory challenges in a brave new world

Security related references

1.6. Looking Ahead
Over the past decade, new communications
technologies have become cheaper, more useful and
more useable and in becoming cheaper, have been
embraced by the majority of people in developed
countries, as well as a growing proportion of those
in the developing world. This dramatic change is
bringing with it a range of new challenges, related,
for instance, to privacy, security and digital content
regulation.

7.6. Protecting Privacy

The digital age has created massive new challenges
to protect individual privacy and personal as well as
commercial proprietary information. Regulators are
now coming to terms with the magnitude of the
problem and trying to forge workable solutions.

7.7. Cybersecurity Concerns

The digital age has brought with it an entirely new
class of security concerns, for governments,
companies, and individuals. Our growing
dependence on ICTs has meant that our public and
private networks have become critical and
increasingly vulnerable infrastructure. The reality is
that any weakness or attack, no matter how small,
can have large global consequences. And the
interests of security must be weighed against the
liberty of citizens and the need for reasonable
restraints on interference with private
communications.

 

Notes

This book is a nice snapshot of regulation related information in one cover. The material is lighter and easier to go through than with the ICT regulation toolkit.

Posted in ICT Leadership and Management, ICT Training and Courses, Telecom Security | Comments Off on Telecommunications Regulation Handbook

ICT regulation toolkit

Posted on 16 March 2012 by Admin

Infodev together with ITU has developed “ICT Regulation Toolkit“.

logo

The ICT Regulation Toolkit is a live resource for policy-makers, regulators, the telecom industry, and consumers. It provides a global overview of how telecom policy is best implemented with practical materials highlighting experience and results.

The toolkit contains several modules:

  • Module 1. Regulating the Telecommunications/ICT Sector: Overview
  • Module 2. Competition and Price Regulation
  • Module 3. Authorization of Telecommunication/ICT Services
  • Module 4. Universal Access and Service
  • Module 5. Radio Spectrum Management
  • Module 6. Legal and Institutional Framework
  • Module 7. New Technologies and Impacts on Regulation

 

Note

This material is not really light reading for everyone, but provides information for those who wish to understand more about telecom regulation…

Lighter reading is available in “Telecommunications Regulation Handbook“.

Posted in ICT Leadership and Management, ICT Training and Courses, Telecom Security | Comments Off on ICT regulation toolkit