Security Essentials
Chapter 1
SECURITY ESSENTIALS
1. Introduction to Security Engineering
1.1 Security engineering is about building systems to remain dependable in the face of malice, error, or mischance. 1.2 It focuses on the tools, processes, and methods needed to design, implement, and test complete systems, and to adapt existing systems as their environment evolves.
1.3 Security engineering requires cross-disciplinary expertise, ranging from cryptography and computer security through hardware tamper-resistance and formal methods to a knowledge of applied psychology, organizational and audit methods and the law.
1.4 Many security systems have critical assurance requirements. Their failure may
endanger human life and the environment (as with nuclear safety and control systems), do serious damage to major economic infrastructure (cash machines and other bank systems), endanger personal privacy (medical record systems), undermine the viability of whole business sectors (pay-TV), facilitate crime (burglar and car alarms).
Even the perception that a system is more vulnerable than it really is (as with paying with a credit card over the Internet) can significantly hold up economic development.
1.5 Security technology involves the use of both hardware and software products to increase overall physical security. Examples of product includes :
Explosive detection system
X-ray detection system
Blast protection for windows /doors
Electronic background checks
Monitoring / identification checks.
2. Various aspects of Security
2.1 Security Systems
The security products and services segments contain several key sectors:
A. Physical security products : explosive detection systems, X-ray scanning, security glass doors etc
B. IT security products: Firewalls, intrusion detection, tokens and cards, user authentication, anti-virus, encryption etc.
C.
SECURITY ESSENTIALS
1. Introduction to Security Engineering
1.1 Security engineering is about building systems to remain dependable in the face of malice, error, or mischance. 1.2 It focuses on the tools, processes, and methods needed to design, implement, and test complete systems, and to adapt existing systems as their environment evolves.
1.3 Security engineering requires cross-disciplinary expertise, ranging from cryptography and computer security through hardware tamper-resistance and formal methods to a knowledge of applied psychology, organizational and audit methods and the law.
1.4 Many security systems have critical assurance requirements. Their failure may
endanger human life and the environment (as with nuclear safety and control systems), do serious damage to major economic infrastructure (cash machines and other bank systems), endanger personal privacy (medical record systems), undermine the viability of whole business sectors (pay-TV), facilitate crime (burglar and car alarms).
Even the perception that a system is more vulnerable than it really is (as with paying with a credit card over the Internet) can significantly hold up economic development.
1.5 Security technology involves the use of both hardware and software products to increase overall physical security. Examples of product includes :
Explosive detection system
X-ray detection system
Blast protection for windows /doors
Electronic background checks
Monitoring / identification checks.
2. Various aspects of Security
2.1 Security Systems
The security products and services segments contain several key sectors:
A. Physical security products : explosive detection systems, X-ray scanning, security glass doors etc
B. IT security products: Firewalls, intrusion detection, tokens and cards, user authentication, anti-virus, encryption etc.
C.