A Study On Information Security Assurance System Of University Libraries Under The Network Environment

Along with the development of the modern information techniques and the network environment, digital information service becomes one of the most important factors of promoting the national informatization. But various information security problems has become increasingly serious and is one of key issues restricting the informatization. Under the network environment, university libraries, as an important part of information service organizations, develop their service methods and users' range continuously. Now they are not only base of education and scientific research, but also one of the important experimental units of national information construction. Meanwhile, network technologies lead to security risk difficult to deal with to the university libraries. New security problems now are beyond the capabilities of old information security measures. If we can't solve the problem, we will not ensure safety of library information assets. So we have to develop an information security assurance system adapt to the internet environment as soon as possibly.This paper makes up of four parts. The first part: including Exordium, analyzes the research background and significance of this paper, and then discusses research status at home and abroad. The second part: including the first chapter, analyzes information security environment of university libraries under network environment and the necessity of a new information security assurance system's constructing, and then put forward a plan which is an information security assurance system made up of laws and standards system, management system and technical system. The third part: including the second, third, and fourth chapter. In this part, detailed description of three components of the new information security assurance system is presented. The second chapter analyzes laws, regulations and standards present on information security at home and abroad; the third chapter discusses the composition of information security management system of university libraries, including organizational construction, guiding principle and some concrete systems on how to protect human resources, information content recourse, hardware and software; the fourth chapter divides information security technical levels into entity, moving and data safety, and then analyzes the application of key information security technology such as protection, detection, incident response and recovery/backup technology in libraries. Finally, they are integrated into four systems. The fourth part: including the fifth chapter, is a case analysis, which analyzes the present situation and problems of the information security management in Hebei University library in detail.Main innovation points of this article: analyses new information security problems of university libraries under network environment; shows that the information security measures present are not able to protect information assets of libraries effectively; puts forward a solution aiming at university libraries which is developing information security assurance system adapt to the network environment.