U2.1 Comp Sec: deals with prevention & detection of unauthorised actions by users of a comp system

Accountability & Authorisation
1. Accountability closely related to detection
  1. Keep audit trails and logs protected so actions affecting Sec can be traced to those responsible
2. Authorisation related to prevention
  1. Users must be identified and authorised, usernames / passwords
Confidentiality
1. Prevent unauthorised disclosure
  1. Stop unauthorised viewing
    1. Prevention more important than detecting or reacting
  2. Cant recover from a breach of confidentiality
2. Privacy
  1. Protecting personal data
3. Secrecy
  1. Protecting organisational secrets
Integrity
1. Prevent unauthorised modification
  1. Internal Consistency
    1. Clark & Wilson
      1. No user of a system even if authorised may be permitted to modify data in a way that assets or accounting records are lost /corrupted
  2. External consistency
    1. Orange Book
      1. data has not been exposed to to accidental or malicious alteration or destruction
  3. Detection of intentional / accidental modifications
2. A prerequisite for many security services
Availability
1. Prevent unauthorised withholding of information / resources
2. May be the most important aspect of Comp Sec
3. DDOS
Prevention
1. Measures to prevent damage
Detection
1. Detecting when, how & who did damage
  1. Maintaining the integrity
Reaction
1. Recovery from damage
Reliability & dependability
1. Making systems dependable
  1. Extremley important in safety critical systems, national infrastructure

Resource summary

	Created by Craig Parker over 10 years ago