| Summary: | 碩士 === 國立臺灣大學 === 會計學系研究所 === 86 === Intranet is a new form of information system introduced after 1995. It
takes advantage of Internet protocols, and facilitates intra-organization com
munication, collaboration, and application. It brings in even more business op
portunities than the Internet. Utilizing the Internet architecture, Intranet s
hares the same concern of security, control, and audit. First stated in
the thesis are the benefits, concerns, definition, and architecture of Intran
et. Following is the framework for evaluating Intranet control and audit funct
ions, built through a series of literature review. The five functions of authe
ntication and access control, confidentiality, information integrity, non-repu
diation, and audit trail are considered crucial in the framework. Evaluation s
tandards are set for each of the functions. Finally, seven Intranet solution p
ackages from Netscape, Microsoft, Lotus, Sun, Novell, Oracle, and Informix are
evaluated through the framework. Other than technical analysis mention
ed above, "Standards for Evaluating Control Systems" from Taiwan Security Exch
ange is referenced, and charts are built to state the integral view of Intrane
t audit and control.
|
|---|
