Chapter 3Security Architecture and Engineering

This chapter covers the following topics:

  • Engineering Processes Using Secure Design Principles: Concepts discussed include the ISO/IEC 15288:2015 and NIST SP 800-160 systems engineering standards, objects and subjects, and closed versus open systems.

  • Security Model Concepts: Concepts discussed include confidentiality, integrity, and availability, security modes, defense in depth, security model types, security models, system architecture steps, ISO/IEC 42010:2011, computing platforms, security services, and system components.

  • System Security Evaluation Models: Concepts discussed include TCSEC, ITSEC, Common Criteria, security implementation standards, and controls and countermeasures.

  • Certification ...

Get CISSP Cert Guide, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.