Part 1 examines general issues in computer security management, including sources of vulnerability and the need to allocate the responsibility for security programs to appropriately trained personnel. Part 2 provides guidelines for assessing liability and risks associated with electronic data processing (EDP) security, and discusses the costs and difficulties in conducting a risk analysis. Part 3 offers guidelines for selectively focusing security protection efforts both inside and outside the workplace. In Part 4, computer criminals are profiled and data on the relationship between the proliferation of computers and computer-related crime are presented. Part 5 examines the role of policies, computing procedures, and safeguards (such as off-site data storage and cryptography) in EDP and information security. Part 6 discusses a variety of physical security issues such as fire safety, physical access control, office design, and protection of computer inputs and outputs. Software access controls also are described. Finally, the role of the questioned document examiner in proving a suspected computer crime is delineated. Chapter footnotes, references, figures, and index.