Application service provider (ASP), network-based application rental service provider of information system, ASP, has appeared as a new business style in information technology (IT) market. However, there are two main differences between the ASP model and traditional IS model. First, the relationship between ASPs and customers in ASP model is more temporary than in traditional IS model. Second, information resources of ASP's customers are located at the public network and data center. In these reasons, it is important that third parties need to certify and audit an ASP for successful implementation of the ASP model. This paper investigates characteristics of the ASP model and designs the framework for certification and audit of ASP. It is examined how the framework can remove potential threats and risks of the ASP model, and how the framework can be compared with traditional approaches.
Bibliographical noteFunding Information:
This work is supported by IITA, Korea under Grant FREERESEARCH 00-18.
All Science Journal Classification (ASJC) codes
- Earth and Planetary Sciences(all)