摘要:T o effectively assess the security needs of an organization and
to evaluate and choose various security products and policies,
the manager responsible for security needs some systematic
way of defi ning the requirements for security and characterizing the
approaches to satisfy those requirements. This process is diffi cult
enough in a centralized data processing environment; with the use of
local- and wide-area networks (LANs and WANs, respectively), the
problems are compounded.
