|
⇤ ← Revision 1 as of 2011-01-09 17:04:14
Size: 125
Comment:
|
Size: 968
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 4: | Line 4: |
== Chapter 1 == 1. No clear boundary exists between computer security and network/Internet security. This book comes to the problem from the network security side. 1. CIA triad from "computer security" 1. '''C'''onfidentiality 1. '''I'''ntegrity 1. '''A'''vailability 1. Many experts add: 1. Authenticity 1. Accountability (non-repudiation, deterrence, fault isolation, intrusion detection and prevention, after-action recovery and legal action) 1. Computer security is complex 1. Requirements stated in one word, but mechanisms to fulfill requirements often complex 1. Security mechanisms prone to attack 1. Threat analysis to a security service may reveal additional complexity 1. Placement of the mechanisms not trivial... see the rest on page 8. 1. OSI securiity model |
Describe NetworkSecurityEssentials4
This page includes Dr. A's own notes on Network Security Essentials 4th Edition.
Chapter 1
- No clear boundary exists between computer security and network/Internet security. This book comes to the problem from the network security side.
- CIA triad from "computer security"
Confidentiality
Integrity
Availability
- Many experts add:
- Authenticity
- Accountability (non-repudiation, deterrence, fault isolation, intrusion detection and prevention, after-action recovery and legal action)
- Computer security is complex
- Requirements stated in one word, but mechanisms to fulfill requirements often complex
- Security mechanisms prone to attack
- Threat analysis to a security service may reveal additional complexity
- Placement of the mechanisms not trivial... see the rest on page 8.
- OSI securiity model