Methods and tools for the development of information security policy — A comparative literature review

Information security policy is primarily determined by the environment in which various information are being used and communicated. Such growing complexity of the security environment looks for the appropriate methods and tools for the support of the processes of planning, implementation, and enforcement of information security policy. Comparative review of the available literature is used to analyze the state of the development in this field. Based on that, some observations and a priori hypothesis are given. These hypotheses are then thoroughly checked throughout the more detail analyses of the selected scientific papers. The goal is to determine actual state and trends in the field of methods and tools for the support of processes of planning, implementation, and enforcement of information security policy.