Are We Missing the Cybersecurity Factors in Recordkeeping?


Jaigirdar F. T., SAĞLIK Ö., Rudolph C., Evans J.

18th International Conference on Information for a Better World: Normality, Virtuality, Physicality, Inclusivity, iConference 2023, Virtual, Online, 13 - 17 March 2023, vol.13971 LNCS, pp.3-13 identifier

  • Publication Type: Conference Paper / Full Text
  • Volume: 13971 LNCS
  • Doi Number: 10.1007/978-3-031-28035-1_1
  • City: Virtual, Online
  • Page Numbers: pp.3-13
  • Keywords: Archives, Cybersecurity, Recordkeeping
  • Bursa Uludag University Affiliated: Yes

Abstract

When creating, storing, and maintaining sensitive records, such as government data or records that reflect citizen rights or represent their health data, those records need to be trustworthy and secure. Since organizations are creating huge digital records, security in recordkeeping grows in complexity, and the relationship between the cybersecurity and recordkeeping domains is also expanding. While integrity and appraisal of records have always been considered important for records, existing standards and security discussions are missing some essential perspectives. Thus, research is needed to understand cybersecurity factors (different cybersecurity standards, techniques, protocols, etc.) for recordkeeping and the potential consequences of ignoring factors. With this goal, we explore two core standards, International Organization for Standardization ISO 15489 and ISO 27001, and selected relevant recent literature. This study makes a case for a universal standard for these cross-domain aspects of recordkeeping and cybersecurity by considering the existing standards and identifying the missing cybersecurity factors in recordkeeping. It also discusses relevant challenges and future research directions.