Data security engineering is a methodology for designing and implementing cost-effective data protection mechanisms for specified databank systems. Included will be models of protective mechanisms, derivation of measurements of effectiveness, setting up and evaluating cost-effectiveness formulas, developing a calculus for handling complex structures of protective mechanisms, and deriving guidelines for implementation. Such a methodology does not yet exist, but is being developed by the author and others. This paper discusses the general requirements and specific features of data security engineering. 25 pp. Ref.
This report is part of the RAND Corporation paper series. The paper was a product of the RAND Corporation from 1948 to 2003 that captured speeches, memorials, and derivative research, usually prepared on authors' own time and meant to be the scholarly or scientific contribution of individual authors to their professional fields. Papers were less formal than reports and did not require rigorous peer review.
The RAND Corporation is a nonprofit institution that helps improve policy and decisionmaking through research and analysis. RAND's publications do not necessarily reflect the opinions of its research clients and sponsors.