The Contribution of Records Management and Archival Practices to Information Security Principles: A Conceptual Review

GÜLER C., Furat F.

TURKISH LIBRARIANSHIP, cilt.36, sa.1, ss.74-89, 2022 (ESCI) identifier identifier

  • Yayın Türü: Makale / Derleme
  • Cilt numarası: 36 Sayı: 1
  • Basım Tarihi: 2022
  • Doi Numarası: 10.24146/tk.1012325
  • Dergi Adı: TURKISH LIBRARIANSHIP
  • Derginin Tarandığı İndeksler: Emerging Sources Citation Index (ESCI), Library and Information Science Abstracts, Library, Information Science & Technology Abstracts (LISTA), Directory of Open Access Journals, TR DİZİN (ULAKBİM)
  • Sayfa Sayıları: ss.74-89
  • İstanbul Üniversitesi Adresli: Evet

Özet

Records management and archival applications are fields that are constantly changing, developing and transforming throughout history. The acceleration of technological developments with digital technologies in the last 30 years has put us into an easier, more widespread and faster world. However, on the other hand, this new world carries enormous risks and threats in terms of software and hardware. In this world, which "forces change" to adapt to itself, the general understanding of benefiting from technologies has been replaced with adapting ourselves to the developing technologies, integrating with the knowledge at hand and contributing to this process. Objective: The integration of records management and archival applications with information security principles and the emergence of more secure records management and archival systems in this context will also contribute to this process. Method: Based on the descriptive method, the connection between records management and archival applications with the triad information security principles of "confidentiality, integrity and availability" was discussed in this study. For this purpose, common points of the principles in the standards explaining records management and archival applications such as ISO 15489, TS 13298, and principles in ISO 27001, which are the information security standard, are discussed. Findings: The evaluation shows that the principles and practices in records and archival management have many aspects similar to information security principles. Implications: These aspects contribute to information security, and thus the necessity of integrating the information security standard with records and archival management principles and practices becomes a must. It seems possible with the contribution of both fields to address the risks and threats brought by changing technology and technology with a holistic strategy. Originality: This study compares the principles and practices in records and archival management with information security principles, depending on their reflections in the national and international standards of both fields, and ensuring the integration of records management and archival applications with information security principles, and in this context, the emergence of more secure records management and archival systems. It has the characteristic of an original work by revealing its necessity.