Explosive growth in the use of information systems for all manner of applications in all parts of life has made proper security essential. Security of information systems is an international matter because information systems often cross national boundaries and because the issues to which they give rise may most effectively be resolved by international consultation and co-operation. The OECD Guidelines for the Security of Information Systems will provide a foundation upon which countries and the private sector, acting singly and in concert, may construct a framework for security of information systems. The framework will include laws, codes of conduct, technical measures, management and user practices, and public education and awareness activities. The Guidelines constitute a benchmark against which governments, the public sector, the private sector and society may measure their progress.