Information Security Strategy, Version 1.0

This White Paper proposes a new framework for ensuring enterprise-level information security that reflects current realities of enterprise, network, and information sharing and access. The production of this White Paper is in itself an example of the process proposed in the paper. The Security Forum (bringing the perspective of standards, technology, and business), together with the Cyberspace Law Committee (bringing the perspective of business legal advisors), have cooperated in analyzing and recommending improvement to current, perimeter-based, and proprietary-based enterprise-level information security practices to propose a new framework for effective information-centric security.