Security management of electronic data interchange

Abstract

This thesis considers the security management issue of electronic data interchange (EDI) and the security tools that are used for secure EDI implementation. Management considerations of EDI are considered to be an integration of EDI and security services. The background of EDI is surveyed along with EDI implementation procedures and Digital Signature (DS) techniques. The security services that are being used today are discussed in Chapter 5 including the EDI-related security standards. Finally, a security management model is presented that may be used to improve the security of an EDI implementation. The model is based on the perceived threats and vulnerabilities to the EDI, and the availability of security services and mechanisms. Included in the model are the setting of security goals, the determination of security policies, the determination of priorities for EDI security, and the construction of security architecture and management activities. This thesis was written to survey the concepts of EDI and DS. ne survey of EDI related security standards may provide an opportunity to understand security services and security mechanisms available when designing an EDI system. Also, the security management model may help to improve the security of an organization