Revitalized Information Assurance Training Approach and Information Assurance Best Practice Rule Set

摘要

As the Information Age emerges to become the next great technological movement of modern civilization, the passion for information dominance will ultimately lead to the possession of information superiority, yet inferiority could prevail in the same breath if not carefully examined. Unlike wars of the past, the DoD faces a new dimension to modern warfare, against a novel adversary: the faceless foe. This faceless foe can come from abroad, domestically, and even within our own seemingly secure, yet vulnerable infrastructure. As modern society continues to move forward with the 'latest high-tech gadget' or 'cutting edge' technology, information still prevails. With increased wants and needs for information comes the associated risks and vulnerabilities of information management as people (and organizational procedure) can work against you and/or your information management and protection schemes. The objective of this thesis is to assess the People and Organizational (P-O) aspect of secure network environments with respect to the current standards and procedures that the DoD implements toward protecting network infrastructures. This thesis aims to revitalize IA training standards and implement best practice methods to address the people (as users) and organizational procedures (as operating environment) influences within the DoD structure on information security.