E-Commerce

TCO-Aware Provisioning of Information Security Infrastructure

Free registration required

Executive Summary

As IT infrastructure proliferates, higher-level security controls must become interpretable and enforceable by machines, largely without human intervention. The authors establish a single provisioning model and process for addressing security and the Total Cost of Ownership (TCO). The innovation is the combination of these two aspects of provisioning hosted software in the same process and model. Provisions are made for comparing alternatives and justifying design and mechanism-selection decisions, based on their impact on the TCO of the system being protected. While TCO calculations may be estimations and qualitative, quantitative arguments can still be incorporated to validate all security infrastructure provisioning decisions made with respect to both security and TCO.

  • Format: PDF
  • Size: 464.6 KB