Re: BS7799 and ISO17799
From: Julian Curmi (julian.curmi@bov.com)Date: 07/30/01
- Previous message: Su Wadlow: "Re: Raw Sockets in WinXP"
- Maybe in reply to: Carmelo Floridia: "BS7799 and ISO17799"
- Next in thread: Pete Sherwood: "Re: A code red that could bring down the net?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Subject: Re: BS7799 and ISO17799 To: "Carmelo Floridia" <cfloridia@lex.unict.it> Message-ID: <OFEDFDA44F.37C5505C-ONC1256A99.002212B3@bov.com> From: "Julian Curmi" <julian.curmi@bov.com> Date: Mon, 30 Jul 2001 08:17:18 +0200
Carmelo,
I believe that there is no difference other than the name/s that they are
both referred to.
BS7799 is the original document on information security management (I have
a document dated 1995) that was adopted as an ISO standard by the
International Standards Organisation - I am not sure if there were any
specific additions, however as far as I can tell, not much, if any has
changed from the original BS7799. You may wish to refer to
http://www.bsi.org.uk to find out more.
The Malta Standards Authority has adopted this ISO 17799 as the official
Maltese standard on information security management.
Hope this clarifys your problem.
Regards
Julian Curmi AMIAP CISA
Information Security Officer
Bank of Valletta plc
Malta, Europe
"Carmelo
Floridia" To: <SECURITY-BASICS@securityfocus.com>
<cfloridia@lex cc:
.unict.it> Subject: BS7799 and ISO17799
27-07-01 10:20
AM
What's the difference between BS7799 and ISO17799?
best regards Carmelo
-----Messaggio originale-----
Da: Pete Sherwood [mailto:petersherwood@home.com]
Inviato: mercoledì 25 luglio 2001 23.36
A: Dom De Vitto; Patrick Smallwood
Cc: SECURITY-BASICS@securityfocus.com; vuln-dev@securityfocus.com
Oggetto: Re: A code red that could bring down the net?
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
[snip]
> I give up...who is William T Morris? My G-Dads name is Morris Williams,
> but he doesnt like the Internet, much less interested in a "Big DoS" of
> it...
[snip]
> I think a guy called William 'T' Morris may have had this idea first.
> Allegedly :-)
Robert T. Morris!
> History. History. History.
OK. Here is one explanation:
In 1988, the ARPANET had its first automated network security incident,
usually referred to as "the Morris worm" (4). A student at Cornell
University (Ithaca, NY), Robert T. Morris, wrote a program that would
connect to another computer, find and use one of several vulnerabilities to
copy itself to that second computer, and begin to run the copy of itself at
the new location. Both the original code and the copy would then repeat
these actions in an infinite loop to other computers on the ARPANET. This
"self-replicating automated network attack tool" caused a geometric
explosion of copies to be started at computers all around the ARPANET. The
worm used so many system resources that the attacked computers could no
longer function. As a result, 10% of the U.S. computers connected to the
ARPANET effectively stopped at about the same time.
See:
http://www.cert.org/encyc_article/tocencyc.html
> Dom
Pete Sherwood
613-260-0612 (home/office)
613-591-8900 ext. 525 (voice-mail)
PGP and Thawte digital keys available @
http://members.home.net/petersherwood/
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>
iQA/AwUBO187kromytMtxLfsEQLWxwCfRXrglPH1Tu7EPe8+tL/KAbaRAooAoIaM
4EbW55WMlKfsLEDpliqkHkTq
=EScm
-----END PGP SIGNATURE-----
- Previous message: Su Wadlow: "Re: Raw Sockets in WinXP"
- Maybe in reply to: Carmelo Floridia: "BS7799 and ISO17799"
- Next in thread: Pete Sherwood: "Re: A code red that could bring down the net?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
