English
Received 22.07.2024, Revised 22.10.2024, Accepted 25.11.2024
The relevance of this study is driven by the rapid development of electronic document management and the growing need for reliable digital data preservation amid contemporary cyber threats and technological challenges. The research aimed to conduct a comprehensive analysis of electronic document preservation issues and develop recommendations for implementing effective electronic records management systems in accordance with international standards. The study employed an analytical method to examine international information security standards, a systems approach to conceptualise document preservation processes as an integrated system, a comparative method to analyse different approaches to electronic document preservation, and a case study method to evaluate practical implementations of electronic document management systems. The findings underscored the critical importance of addressing technological obsolescence of data formats, the complexities of electronic document management processes, and data loss risks. Key aspects of managing and preserving electronic records in line with international information security standards were examined. Emphasis was placed on the necessity of implementing comprehensive strategies to ensure the long-term preservation of digital documents. Six core strategic approaches were identified: adherence to international standards; development of holistic policies for document collection, storage, and access; creation of an operational model for digital preservation; implementation of effective data administration and transfer policies; regular system audits and updates; and provision of adequate staff training and education. Attention was given to the potential of emerging technologies such as blockchain and artificial intelligence, which can enhance the efficiency of electronic document preservation. Blockchain ensured integrity, authenticity, and transparency through decentralised record-keeping, while artificial intelligence technologies optimised document classification, indexing, and retrieval, addressing confidentiality concerns. The need to integrate these technologies in compliance with established international standards to guarantee the authenticity, immutability, and persistent accessibility of electronic documents was highlighted. The practical value of this research lies in its recommendations for implementing a set of best practices for electronic document preservation, including regular material assessments, metadata management, and technological infrastructure maintenance. The study’s findings can be utilised by organisations to improve their electronic document management systems and enhance information security levels
electronic document management; ISO standards; cybersecurity; digital preservation; metadata management; technological infrastructure
[1] Antonucci, D. (2017). The cyber risk handbook: Creating and measuring effective cybersecurity capabilities. Hoboken: John Wiley & Sons. doi: 10.1002/9781119309741.
[2] Artamonova, S., & Odynoka, L. (2009). National standards for archival and library affairs as a basis for unification of technological processes in the activities of scientific and reference libraries of archival institutions. Studies in Archival Affairs and Documentation, 17, 49-57.
[3] Biswas, P. (2023). ISO 27001:2022. Clause 7.5. Documented information. Pretesh Biswas. Retrieved from https://preteshbiswas.com/2023/12/24/iso-270012022-clause-7-5-documented-information/.
[4] British Library Digital Preservation Strategy. (2016). British Library. Retrieved from https://oc.ac.ge/pluginfile.php/649/mod_resource/content/0/BL_PresStrategy.pdf.
[5] Bullock, A. (1999). Preservation of digital information: Issues and current status. Network Notes, 60.
[6] Complete List of Cyber Security Standards. (n.d.). AAT TEAM. Retrieved from https://allabouttesting.org/complete-list-of-cyber-security-standards/.
[7] Cushing, A.L., & Osti, G. (2023). “So how do we balance all of these needs?”: How the concept of AI technology impacts digital archival expertise. Journal of Documentation, 79(7), 12-29. doi: 10.1108/JD-08-2022-0170.
[8] Davydiuk, A., & Potii, О. (2024). National cybersecurity governance: Ukraine. Tallinn: The NATO Cooperative Cyber Defence Centre of Excellence.
[9] Digital Preservation Case Notes: Welsh Journals Online. (2010). The National Library of Wales. Retrieved from https://www.dpconline.org/docs/digital-preservation/case-study/450-casenotewelshjournals/file.
[10] Digital Preservation Coalition. (2024). Retrieved from https://www.dpconline.org/.
[11] Digital Preservation Strategy 2022-2026. (2022). National Archives. Retrieved from https://www.archives.gov/preservation/digital-preservation/strategy.
[12] Durniak, B., & Sabat, V. (2010). Semantic protection of information in document management systems. Information technologies. Lviv: Publishing House of the Ukrainian Academy of Printing.
[13] Findlay, C. (2018). Crunch time: The revised ISO 15489 and the future of recordkeeping. Cassie Findlay. Retrieved from https://cassiefindlay.com/2018/03/12/crunch-time-the-revised-iso-15489-and-the-future-of-recordkeeping/.
[14] Findlay, C. (2019). Challenges and opportunities of the digital age: A recordkeeping perspective. Cassie Findlay. Retrieved from https://cassiefindlay.com/2019/05/08/challenges-and-opportunities-of-the-digital-age-a-recordkeeping-perspective/.
[15] Guttman, B., White, D.R., & Walraven, T. (2022). Digital evidence preservation: Considerations for evidence handlers. Gaithersburg: National Institute of Standards and Technology. doi: 10.6028/NIST.IR.8387.
[16] Guz, A. (2013). Evolution of the world standards of information security. Information Security of the Person, Society and State, 2, 8-12.
[17] Information security. (n.d.). Digital Preservation Handbook. Retrieved from https://www.dpconline.org/handbook/technical-solutions-and-tools/information-security.
[18] Institutional policies and strategies. (n.d.). Digital Preservation Handbook. Retrieved from https://www.dpconline.org/handbook/institutional-strategies/institutional-policies-and-strategies.
[19] Ismaili, I., & Sülçevsi, R. (2015). The era of electronic documents and the challenges facing their management. Atlanti, 25(1), 175-181. doi: 10.33700/2670-451X.25.1.175-181(2015).
[20] ISO 14641:2018. (2018). Electronic document management – design and operation of an information system for the preservation of electronic documents – specifications. Retrieved from https://www.bsbedge.com/standard/electronic-document-management-design-and-operation-of-an-information-system-for-the-preservation-of-electronic-documents-specifications-iso-14641-2018/ISO74338.
[21] ISO 15489-1:2016. (2016). Information and documentation – records management. Part 1: Concepts and principles. Retrieved from https://www.iso.org/obp/ui/en/#iso:std:iso:15489:-1:ed-2:v1:en.
[22] ISO 19005-4:2020. (2020). Document management – electronic document file format for long-term preservation. Part 4: Use of ISO 32000-2 (PDF/A-4). Retrieved from https://www.iso.org/standard/71832.html.
[23] ISO/IEC 27001:2022. (2022). Information security, cybersecurity and privacy protection – information security management systems – requirements. Retrieved from https://www.iso.org/standard/27001.
[24] ISO/IEC 27400:2022 (E). (2022). Cybersecurity – IoT security and privacy – guidelines. Retrieved from https://cdn.standards.iteh.ai/samples/44373/cb2637b7641f43ed89851b00389b31c3/ISO-IEC-27400-2022.pdf.
[25] ISO/SAE 21434:2021. (2021). Road vehicles – cybersecurity engineering. Retrieved from https://www.iso.org/standard/70918.html.
[26] Joseph, P., Debowski, S., & Goldschmidt, P. (2012). Paradigm shifts in recordkeeping responsibilities: Implications for ISO 15489’s implementation. Records Management Journal, 22(1), 57-75. doi: 10.1108/09565691211222108.
[27] Kalinicheva, G., & Romanovskyi, R. (2015). International standards in the field of archival affairs and management of documentary processes: Problems of harmonisation in Ukraine. Archives of Ukraine, 4, 54-73.
[28] Kyseleva, L. (2012). The definition of European standards in the field of the archived and office work. Public Administration and Local Self-Government, 4, 142-150.
[29] Mancini, J. (2009). 8 Steps of the ISO/TR 15489 records management methodology. AIIM. Retrieved from https://info.aiim.org/aiim-blog/newaiimo/2009/07/01/eight-steps-of-the-isotr-1548922001-records-management-program-implementation-methodology.
[30] Marulin, S. (2013). Information technology of data exchange between the electronic document management system and the database of the information system. (PhD dissertation, Odesa National Polytechnic University, Odesa, Ukraine).
[31] McLeod, J. (2008). A manager’s guide to the long-term preservation of electronic document. Records Management Journal, 18(3). doi: 10.1108/rmj.2008.28118cae.002.
[32] NIST SP 800-115, Technical Guide to Information Security Testing and Assessment. (2020). National Institute of Standards and Technology. Retrieved from https://www.nist.gov/privacy-framework/nist-sp-800-115.
[33] OWASP Top Ten 2025. (2024). OWASP. Retrieved from https://owasp.org/www-project-top-ten/.
[34] Paule, L.G. (2023). ISO/IEC 27001 – the international standard for information security. Official website of the European Union. Retrieved from https://digital-skills-jobs.europa.eu/en/inspiration/resources/isoiec-27001-international-standard-information-security.
[35] PCI Data Security Standard (PCI DSS). (2024). PCI Security Standards Council. Retrieved from https://www.pcisecuritystandards.org/standards/pci-dss/.
[36] Preservation issues. (n.d.). Digital Preservation Handbook. Retrieved from https://www.dpconline.org/handbook/digital-preservation/preservation-issues.
[37] Publicly Available Standards. (2024). International Organization for Standardization. Retrieved from https://standards.iso.org/ittf/PubliclyAvailableStandards/.
[38] Purser, S. (2014). Standards for cyber security. In M.E. Hathaway (Ed.), Best practices in computer network defense: Incident detection and response (Vol. 35, pp. 97-106). Amsterdam: IOS Press Ebooks. doi: 10.3233/978-1-61499-372-8-97.
[39] Sabat, V. (2023). Methodological bases of information technologies for document flow protection in hierarchical automated control systems. (Doctoral dissertation, Ukrainian Academy of Printing, Lviv, Ukraine).
[40] Senchenko, M. (2022). To the problem of preservation of digital heritage. UNESCO Charter on the Preservation of Digital Heritage. Bulletin of Book Chamber, 12, 3-9. doi: 10.36273/2076-9555.2022.12(317).3-9.
[41] Sibil, K. (2005). International descriptive standards ISAD(G) and ISAAR(CPF) in the formation of a common information space. Studies in Archival Affairs and Documentary Studies, 13, 88-103.
[42] Teel, Z. (2024). Artificial intelligence’s role in digitally preserving historic archives. Preservation, Digital Technology & Culture, 53(1), 29-33. doi: 10.1515/pdtc-2023-0050.
[43] UNESCO Charter on the Preservation of Digital Heritage. (2003). In Intergovernmental council for the information for all programme. Paris: UNESCO House. Retrieved from https://unesdoc.unesco.org/ark:/48223/pf0000229034.
[44] Zierau, E., McGovern, N., Goethals, A., Wu, C., & Schaefer, S. (2021). Digital preservation storage criteria and relevant standards: Latest development on the digital preservation storage criteria. In 17th international conference on digital preservation iPRES 2021 (article number 17). Beijing, China.
Українська