| Summary: | 碩士 === 華梵大學 === 資訊管理學系碩士班 === 99 === With the rapid progress of information technology, invoice has been changed from the way of paper to digital one. To provide seller give buyer the digital invoice through internet by PC. For assuring the security of digital invoice to avoid the occurrence of being alerted, disclosed, imposed or resent. This study is to follow the requirements of information security to reach the Confidentiality,Integrity,Non-repudiation and Availability of information as an assessment items.
Nowadays, the enterprises has gradually enlarged the introduction of digital invoice. This study is to refer to ISO 27001 and HIPAA that will construct the appraisal standards of information security of information of digital invoice. By way of expert interview to summarize digital invoice the preliminary items of risk assessment, then use AHP method to acquire the appraisal indexes and items as the first priority consideration of factors. The contents are divided into the six faces of「Government Public key infrastructure」,「Account Control」,「Equipment and Environment Control」, 「Policies Control」,「Internet Control」and 「Digital Copyright Access Control」. Each faces have five to seven of the appraisal items, there are thirty-seven ones in total, to progress the analysis by expert interview and AHP, to calculate these faces of management priority and the weight value. It will built up the information security appraisal standards of digital invoice to find out the influential factors of the security of digital invoice, to provide each institution unit the security reference as introduce the utilization of appraisal standards and the current utilization, to reach the total security operation of digital invoice.
|
|---|
