Abstract :
The need for skilled information security professionals has led various academic, governmental, and industrial organizations to work to develop a common body of knowledge (CBK) for the security domain. A CBK is a framework and collection of information that provides a basis for understanding terms and concepts in a particular knowledge area. It defines the basic information that people who work in that area are expected to know. The International Information Systems Security Certification Consortium ([ISC]; www.isc2.org) defines a CBK as a taxonomy of topics relevant to professionals around the world. Information security is a multidisciplinary endeavor. In practice, professionals need knowledge and experience from fields such as management, business administration, ethics, sociology, and political science. Yet, existing CBKs focus on specific information security subdomains and thus offer limited understanding and narrow perceptions of the overall domain. Our aim is to identify and define an InfoSec CBK to serve as a tool for developing an information security curriculum
Keywords :
computer science education; educational courses; security of data; common body of knowledge; information security curriculum; secure software assurance; secure software engineering; Communication system security; Computer security; Cryptography; Data security; Design engineering; Information security; Project management; Signal design; Software testing; System testing; CBK; InfoSec; common body of knowledge; curriculum development; degree programs; information security;
