Information Assurance

I work in the information assurance area at Johns Hopkins University Applied Physics Lab. I am a senior IA professional.

When did network and computer security become “information assurance,” and why? I do understand that the idea of “information assurance” (IA) sounds broader than “computer and network security,” but is it really? The “I” in “IA” is broader, but practically IA addresses information on computers and networks, not information residing in file cabinets or on bookshelves.

Why and when did this change?

Bobby Miller wrote, “I’ve been in the field since 1978 – get used to terminology changes! Way back when, it was ADP security, then computer security, then information security, now information assurance. I have no doubt it will change again and again. I suspect the reason has to do with Government regulation and/or funding – when you change the name you’re probably more likely to get new money to do the same old stuff.”

No comments: