Chapter 12

Principles of Security Models

THE CISSP EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE:

  • Information Security Governance and Risk Management
    • Support certification and accreditation efforts
    • Assess the completeness and effectiveness of the security program
  • Security Architecture and Design
    • Understand the fundamental concepts of security models (e.g., confidentiality; integrity; and multi-level models)
    • Understand the components of information systems security evaluation models
      • Product evaluation models (e.g., common criteria); industry and international security implementation guidelines (e.g., PCI-DSS, ISO)
    • Understand security capabilities of information systems (e.g., memory protection; virtualization, trusted platform module)
    • Understand ...

Get CISSP®: Certified Information Systems Security Professional Study Guide, Fifth Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.